Lucene search
K

197 matches found

CVE
CVE
added 2017/03/16 2:0 p.m.78 views

CVE-2017-6381

CVE-2017-6381 corresponds to a Drupal RCE via the PHPUnit component bundled with Drupal 8 development dependencies. Affected if running Drupal versions before 8.2.2; mitigation in the public description notes that .htaccess generally blocks PHP execution and that Composer development dependencies...

8.1CVSS8.2AI score0.03901EPSS
Exploits0References3Affected Software1
Friends Of PHP
Friends Of PHP
added 2016/11/13 5:52 p.m.51 views

RCE vulnerability in phpunit

More info at https://nvd.nist.gov/vuln/detail/CVE-2017-9841...

7.5CVSS0.5AI score0.99999EPSS
Exploits19Affected Software1
Friends Of PHP
Friends Of PHP
added 2016/11/13 5:52 p.m.40 views

RCE vulnerability in phpunit

More info at https://nvd.nist.gov/vuln/detail/CVE-2017-9841...

9.8CVSS9.7AI score0.99999EPSS
Exploits19Affected Software1
CakePHP
CakePHP
added 2015/11/05 12:0 a.m.33 views

CakePHP 3.1.4, 3.0.15, 2.7.6 and 2.6.12 released

CakePHP 3.1.4, 3.0.15, 2.7.6 and 2.6.12 released The CakePHP core team is happy to announce the immediate availability of CakePHP 3.1.4, 3.0.15, 2.7.6, and 2.6.12. These releases contain security fixes. 3.1.4 and 2.7.6 also contain bugfixes. Security Fixes These releases contain fixes for a Remot...

7.8AI score
Exploits0
Prion
Prion
added 2014/11/24 11:59 a.m.22 views

Information disclosure

lib/phpunit/bootstrap.php in Moodle 2.6.x before 2.6.6 and 2.7.x before 2.7.3 allows remote attackers to obtain sensitive information via a direct request, which reveals the full path in an error message...

5CVSS6.6AI score0.02118EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2014/11/24 11:0 a.m.28 views

CVE-2014-7848

lib/phpunit/bootstrap.php in Moodle 2.6.x before 2.6.6 and 2.7.x before 2.7.3 allows remote attackers to obtain sensitive information via a direct request, which reveals the full path in an error message...

5.9AI score0.02118EPSS
Exploits0References4
CVE
CVE
added 2014/11/24 11:0 a.m.58 views

CVE-2014-7848

The CVE-2014-7848 entry concerns Moodle: in versions 2.6.x before 2.6.6 and 2.7.x before 2.7.3, a flaw in lib/phpunit/bootstrap.php allows remote attackers to disclose sensitive information by making a direct request, revealing the full path in an error message. This is the explicit vulnerability...

5CVSS6AI score0.02118EPSS
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2014/06/23 12:0 a.m.27 views

Fedora Update for php-phpunit-PHPUnit-MockObject FEDORA-2014-6904

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.7AI score
Exploits0References2
OpenVAS
OpenVAS
added 2014/06/23 12:0 a.m.26 views

Fedora Update for php-phpunit-PHPUnit-MockObject FEDORA-2014-6901

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.7AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/06/18 12:0 a.m.39 views

Fedora 19 : php-phpunit-PHPUnit-MockObject-1.2.3-4.fc19 / php-5.5.13-3.fc19 / etc (2014-6904)

29 May 2014, PHP 5.5.13 CLI server : - Fixed bug 67079 Missing MIME types for XML/XSL files. Anatol COM : - Fixed bug 66431 Special Character via COM Interface CPUTF8. Anatol Core : - Fixed bug 65701 copy doesn't work when destination filename is created by tempnam. Boro Sitnikovski - Fixed bug...

5CVSS8AI score0.20805EPSS
Exploits0References7
Fedora
Fedora
added 2014/06/17 11:36 p.m.32 views

[SECURITY] Fedora 19 Update: php-phpunit-PHPUnit-MockObject-1.2.3-4.fc19

Mock Object library for PHPUnit...

5CVSS2.3AI score0.20805EPSS
Exploits0
Fedora
Fedora
added 2014/06/17 11:31 p.m.36 views

[SECURITY] Fedora 20 Update: php-phpunit-PHPUnit-MockObject-1.2.3-4.fc20

Mock Object library for PHPUnit...

5CVSS2.3AI score0.20805EPSS
Exploits0
NVD
NVD
added 2013/07/01 9:55 p.m.17 views

CVE-2013-4744

Cross-site scripting XSS vulnerability in the PHPUnit extension before 3.5.15 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.01395EPSS
Exploits0References4
Prion
Prion
added 2013/07/01 9:55 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in the PHPUnit extension before 3.5.15 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.2AI score0.01395EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2013/07/01 9:0 p.m.23 views

CVE-2013-4744

Cross-site scripting XSS vulnerability in the PHPUnit extension before 3.5.15 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.7AI score0.01395EPSS
Exploits0References4
CVE
CVE
added 2013/07/01 9:0 p.m.55 views

CVE-2013-4744

The CVE-2013-4744 entry concerns a Cross-site Scripting (XSS) vulnerability in the TYPO3 ecosystem's PHPUnit extension. Affected component: the PHPUnit extension used with TYPO3, versions before 3.5.15. Root cause is not detailed in the provided documents beyond the XSS claim; vectors are describ...

4.3CVSS5.9AI score0.01395EPSS
Exploits0References4Affected Software1
Typo3
Typo3
added 2013/01/11 12:0 a.m.35 views

Several vulnerabilities in third party extensions

Several vulnerabilities have been found in the following third-party TYPO3 extensions: news, onetimeaccount, phpunit, div2007, t3mootools, t3jquery, oneclicklogin Release Date: January 11, 2013 Please read first: This Collective Security Bulletin CSB is a listing of vulnerable extensions with...

7.3AI score
Exploits0Affected Software1
Rows per page
Query Builder