Lucene search
K

11 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 6:15 a.m.2 views

SUSE CVE-2006-1494

Directory traversal vulnerability in file.c in PHP 4.4.2 and 5.1.2 allows local users to bypass openbasedir restrictions allows remote attackers to create files in arbitrary directories via the tempnam function...

2.6CVSS7AI score0.06241EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:12 a.m.2 views

SUSE CVE-2007-1461

The compress.bzip2:// URL wrapper provided by the bz2 extension in PHP before 4.4.7, and 5.x before 5.2.2, does not implement safemode or openbasedir checks, which allows remote attackers to read bzip2 archives located outside of the intended directories...

7.8CVSS7AI score0.02202EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:11 a.m.5 views

SUSE CVE-2007-3997

The 1 MySQL and 2 MySQLi extensions in PHP 4 before 4.4.8, and PHP 5 before 5.2.4, allow remote attackers to bypass safemode and openbasedir restrictions via MySQL LOCAL INFILE operations, as demonstrated by a query with LOAD DATA LOCAL INFILE...

7.5CVSS7AI score0.13818EPSS
Exploits7References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:11 a.m.4 views

SUSE CVE-2007-4663

Directory traversal vulnerability in PHP before 5.2.4 allows attackers to bypass openbasedir restrictions via unspecified vectors involving the glob function...

7.5CVSS7.1AI score0.02141EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:10 a.m.8 views

SUSE CVE-2007-4889

The MySQL extension in PHP 5.2.4 and earlier allows remote attackers to bypass safemode and openbasedir restrictions via the MySQL 1 LOADFILE, 2 INTO DUMPFILE, and 3 INTO OUTFILE functions, a different issue than CVE-2007-3997...

6.8CVSS7AI score0.01221EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:5 a.m.6 views

SUSE CVE-2008-7002

PHP 5.2.5 does not enforce a openbasedir and b safemodeexecdir restrictions for certain functions, which might allow local users to bypass intended access restrictions and call programs outside of the intended directory via the 1 exec, 2 system, 3 shellexec, 4 passthru, or 5 popen functions,...

7.2CVSS6.9AI score0.00832EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2022/04/27 12:0 a.m.5 views

The vulnerability of the PHP programming language interpreter, related to privilege management errors, allows attackers to bypass the protection mechanisms defined by open_basedir.

The vulnerability of the PHP programming language interpreter and the SQLite database management system is related to privilege management errors. Exploiting this vulnerability allows a malicious actor to bypass the protection mechanisms defined by openbasedir...

5CVSS7.7AI score0.02978EPSS
Exploits1References11Affected Software2
Tenable Nessus
Tenable Nessus
added 2009/12/18 12:0 a.m.235 views

PHP 5.2.x < 5.2.12 Multiple Vulnerabilities

Binary data 5281.prm...

10CVSS9.8AI score0.12041EPSS
Exploits7References8
Packet Storm
Packet Storm
added 2009/04/11 12:0 a.m.25 views

PHP 5.2.9 Bypass Exploit

?php / SecurityReason.com - Security Audit Stuff PHP 5.2.9 curl safemode & openbasedir bypass http://securityreason.com/achievementsecurityalert/61 exploit from "SecurityReason - Security Audit" lab. for legal use only http://securityreason.com/achievementexploitalert/11 author: Maksymilian...

0.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/01/03 12:0 a.m.113 views

PHP < 4.4.8 Multiple Vulnerabilities

According to its banner, the version of PHP installed on the remote host is older than 4.4.8. Such versions may be affected by several issues, including integer overflows involving the 'chunksplit', 'strcspn', and 'strspn' functions, and 'safemode' / 'openbasedir' bypasses. %NASLMINLEVEL 70300 C...

9.8CVSS8.2AI score0.13818EPSS
Exploits11References8
RedHat Linux
RedHat Linux
added 2005/05/04 3:9 p.m.6 views

security flaw

PHP 4.0 with cURL functions allows remote attackers to bypass the openbasedir setting and read arbitrary files via a file: URL argument to the curlinit function...

5CVSS6AI score0.10394EPSS
Exploits1References4
Rows per page
Query Builder