10 matches found
Gentoo Security Advisory GLSA 200605-08 (php)
The remote host is missing updates announced in advisory GLSA 200605-08. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
php security update
CentOS Errata and Security Advisory CESA-2006:0501-02 Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting...
Moderate: Red Hat Security Advisory: php security update
Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server...
SUSE-SA:2006:024: php4,php5
The remote host is missing the patch for the advisory SUSE-SA:2006:024 php4,php5. This update fixes the following security issues in the scripting languages PHP4 and PHP5: - copy and tempnam functions could bypass openbasedir restrictions CVE-2006-1494 - Cross-Site-Scripting XSS bug in phpinfo...
Mandrake Linux Security Advisory : php (MDKSA-2006:074)
A cross-site scripting XSS vulnerability in phpinfo info.c in PHP = 5.1.2 allows remote attackers to inject arbitrary web script or HTML via long array variables, including 1 a large number of dimensions or 2 long values, which prevents HTML tags from being removed. CVE-2006-0996 Directory...
php security update
CentOS Errata and Security Advisory CESA-2006:0276 Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting...
Moderate: Red Hat Security Advisory: php security update
Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...
CVE-2006-0996
Cross-site scripting XSS vulnerability in phpinfo info.c in PHP 5.1.2 and 4.4.2 allows remote attackers to inject arbitrary web script or HTML via long array variables, including 1 a large number of dimensions or 2 long values, which prevents HTML tags from being removed...
CVE-2006-0996
The CVE-2006-0996 issue is a cross-site scripting vulnerability in PHP’s phpinfo output that allows remote attackers to inject script/HTML via long array variables. Publicly disclosed in PHP 5.1.2 and 4.4.2, the flaw arises from inadequate sanitization of long strings, enabling XSS in pages that ...
[Full-disclosure] phpinfo() Cross Site Scripting PHP 5.1.2 and 4.4.2
Source: http://securityreason.com/achievementsecurityalert/34 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 phpinfo Cross Site Scripting PHP 5.1.2 and 4.4.2 Author: Maksymilian Arciemowicz cXIb8O3 Date: - -Written: 26.2.2006 - -Public: 8.4.2006 from SecurityReason.Com CVE-2006-0996 - ---...