MidnightBSD

Advisories for teake_nutma

CVE-2006-2507 HIGH

Multiple PHP remote file inclusion vulnerabilities in Teake Nutma Foing 0.2.0 through 0.7.0, as used with phpBB, allow remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter in (1) index.php, (2) song.php, (3) faq.php, (4) list.php, (5) gen_m3u.php, and (6) playlist.php.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
teake_nutma foing 0.4.0
teake_nutma foing 0.5.0
teake_nutma foing 0.7.0
teake_nutma foing 0.6.0
teake_nutma foing 0.2.0
teake_nutma foing 0.3.0
CVE-2006-3045 HIGH

PHP remote file inclusion vulnerability in manage_songs.php in Foing 0.7.0e and earlier allows remote attackers to execute arbitrary PHP code via a URL in the foing_root_path parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
teake_nutma foing *