6 matches found
CVE-2007-4663
Directory traversal vulnerability in PHP before 5.2.4 allows attackers to bypass openbasedir restrictions via unspecified vectors involving the glob function...
Gentoo Security Advisory GLSA 200710-02 (php)
The remote host is missing updates announced in advisory GLSA 200710-02. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
FreeBSD Ports: php5
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-2008-0145
CVE-2008-0145 involves PHP before 4.4.8 with open_basedir enabled. The description notes an unspecified vulnerability in glob and cites a regression related to CVE-2007-4663, but the exact impact and attack vectors are not disclosed in the provided documents.
CVE-2007-4663
Directory traversal vulnerability in PHP before 5.2.4 allows attackers to bypass openbasedir restrictions via unspecified vectors involving the glob function...
CVE-2007-4663
CVE-2007-4663 affects PHP prior to 5.2.4. A directory traversal vulnerability allows bypass of open_basedir restrictions via the glob-based path handling. Affected product: PHP (versions before 5.2.4). Root cause: improper sanitization of glob results leading to potential traversal outside the op...