3 matches found
PHP 操作系统命令注入漏洞
PHP is a scripting language for PHP that executes on the server side. A security vulnerability exists in PHP versions prior to 8.1.29, prior to 8.2.20, and prior to 8.3.8, which stems from a misconfiguration when using a Windows code page with a non-standard configuration that points to the OEM...
AZL-42438 CVE-2024-5458 affecting package php for versions less than 8.3.8-1
In PHP versions 8.1. before 8.1.29, 8.2. before 8.2.20, 8.3. before 8.3.8, due to a code logic error, filtering functions such as filtervar when validating URLs FILTERVALIDATEURL for certain types of URLs the function will result in invalid user information username + password part of URLs being...
Terminalfour 跨站脚本漏洞
Terminalfour is a digital marketing and web content management platform for higher education from Terminalfour, Inc. A cross-site scripting vulnerability exists in versions prior to Terminalfour 8.3.8, which could be exploited by attackers to execute JavaScript code...