Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2007-3783

Malware in sbrugna...

4.3CVSS6AI score0.07919EPSS
Exploits0References42
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.20 views

Debian: Security Advisory (DSA-1331-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.04348EPSS
Exploits0References3
Cvelist
Cvelist
added 2007/07/16 10:0 p.m.26 views

CVE-2007-3799

The sessionstart function in ext/session in PHP 4.x up to 4.4.7 and 5.x up to 5.2.3 allows remote attackers to insert arbitrary attributes into the session cookie via special characters in a cookie that is obtained from 1 PATHINFO, 2 the sessionid function, and 3 the sessionstart function, which...

7.7AI score0.07919EPSS
Exploits0References32
Tenable Nessus
Tenable Nessus
added 2007/07/10 12:0 a.m.36 views

Debian DSA-1331-1 : php4 - several vulnerabilities

Several remote vulnerabilities have been discovered in PHP, a server-side, HTML-embedded scripting language, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2006-0207 Stefan Esser discovered HTTP respons...

7.5CVSS6.2AI score0.04348EPSS
Exploits0References7
Ubuntu
Ubuntu
added 2006/03/10 11:52 p.m.49 views

USN-261-1: PHP vulnerabilities

Stefan Esser discovered that the 'session' module did not sufficiently verify the validity of the user-supplied session ID. A remote attacker could exploit this to insert arbitrary HTTP headers into the response sent by the PHP application, which could lead to HTTP Response Splitting forging of...

5CVSS5.6AI score0.04348EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/02/05 12:0 a.m.31 views

Mandrake Linux Security Advisory : php (MDKSA-2006:028)

Multiple response splitting vulnerabilities in PHP allow remote attackers to inject arbitrary HTTP headers via unknown attack vectors, possibly involving a crafted Set-Cookie header, related to the 1 session extension aka ext/session and the 2 header function. CVE-2006-0207 Multiple cross-site...

5CVSS5.3AI score0.04348EPSS
Exploits0References2
NVD
NVD
added 2006/01/13 11:3 p.m.29 views

CVE-2006-0207

Multiple HTTP response splitting vulnerabilities in PHP 5.1.1 allow remote attackers to inject arbitrary HTTP headers via a crafted Set-Cookie header, related to the 1 session extension aka ext/session and the 2 header function...

5CVSS6.7AI score0.04348EPSS
Exploits0References18
Rows per page
Query Builder