Lucene search
K

5 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 6:12 a.m.1 views

SUSE CVE-2007-1701

PHP 4 before 4.4.5, and PHP 5 before 5.2.1, when registerglobals is enabled, allows context-dependent attackers to execute arbitrary code via deserialization of session data, which overwrites arbitrary global variables, as demonstrated by calling sessiondecode on a string beginning with...

6.8CVSS8AI score0.09233EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2010/04/23 12:0 a.m.29 views

PHP Session Data Deserialization Arbitrary Code Execution Vulnerability

PHP is prone to an arbitrary code execution vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; ifdescriptio...

7.5CVSS7.7AI score0.09233EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.54 views

Gentoo Security Advisory GLSA 200705-19 (php)

The remote host is missing updates announced in advisory GLSA 200705-19. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.8CVSS1.1AI score0.40435EPSS
Exploits14
Prion
Prion
added 2007/03/27 1:19 a.m.24 views

Double free

Double free vulnerability in the unserializer in PHP 4.4.5 and 4.4.6 allows context-dependent attackers to execute arbitrary code by overwriting variables pointing to 1 the GLOBALS array or 2 the session data in SESSION. NOTE: this issue was introduced when attempting to patch CVE-2007-1701...

6.8CVSS7.4AI score0.09233EPSS
Exploits1References26Affected Software1
CVE
CVE
added 2007/03/27 1:0 a.m.83 views

CVE-2007-1701

Technical details for CVE-2007-1701 are not publicly provided in the supplied documents. The materials reference PHP-related advisories and multiple PHP issues but do not describe affected versions, root cause, impact, or remediation for this specific CVE. Monitor for updates.

6.8CVSS7.8AI score0.09233EPSS
Exploits0References12Affected Software1
Rows per page
Query Builder