SUSE CVE-2010-1864

The addcslashes function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information memory contents by causing a userspace interruption of an internal function, related to the call time pass by reference feature...

Internet Bug Bounty: Multiple Heap Overflow due to integer overflows | xml/filter_url/addcslashes

https://bugs.php.net/bug.php?id=71637...

Discuz！的addcslashes对序列化字符串处理不当造成数据注入

简要描述： 首先声明一点，这个漏洞2014-09-10在“腾讯安全应急响应中心”发过，账号现已放弃，对于腾讯不想多说什么 问题描述： DiscuzX3.2及以下 可盗取管理员、用户信息，蠕虫攻击等 详细说明： source\class\discuz\discuzdatabase.php public static function quote$str, $noarray = false if isstring$str return ''' . addcslashes$str, "\n\r\'"\032" . ''';...

PHP 5.2.x<5.2.14,5.3.x<5.3.3 addcslashes函数信息泄露漏洞

No description provided by source...

MOPS-2010-006: PHP addcslashes&#40;&#41; Interruption Information Leak Vulnerability

MOPS-2010-006: PHP addcslashes Interruption Information Leak Vulnerability May 3rd, 2010 PHP’s addcslashes function can be abused for information leak attacks, because of the call time pass by reference feature. Affected versions Affected is PHP 5.2 = 5.2.13 Affected is PHP 5.3 = 5.3.2 Credits Th...

CVE-2010-1864

The addcslashes function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information memory contents by causing a userspace interruption of an internal function, related to the call time pass by reference feature...

Design/Logic Flaw

The addcslashes function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information memory contents by causing a userspace interruption of an internal function, related to the call time pass by reference feature...

CVE-2010-1864

CVE-2010-1864 affects the PHP addcslashes function (PHP 5.2.x up to 5.2.13 and 5.3.x up to 5.3.2) and allows a context-dependent attacker to obtain memory content by triggering a userspace interruption of an internal function related to call time pass by reference. The vulnerability can lead to i...

CVE-2010-1864

The addcslashes function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information memory contents by causing a userspace interruption of an internal function, related to the call time pass by reference feature...

PHP &quot;addcslashes()&quot; Information Disclosure Vulnerability

No description provided by source. Stefan Esser has reported a vulnerability in PHP, which can be exploited by malicious people to disclose potentially sensitive information. The vulnerability is caused due to the implementation of "addcslashes" function not being properly protected against...