19 matches found
PHP < 5.2.8 Multiple Vulnerabilities
PHP is prone to multiple vulnerabilities. Copyright C 2012 NopSec Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or...
[security bulletin] HPSBMA02492 SSRT100079 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Cross Site Scripting (XSS), Denial of Service (DoS), Execution of Arbitrary Code, Unauthorized Access
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02029444 Version: 1 HPSBMA02492 SSRT100079 rev.1 - HP System Management Homepage SMH for Linux and Windows, Remote Cross Site Scripting XSS, Denial of Service DoS, Execution of Arbitrary Code,...
SuSE 11 Security Update : PHP5 (SAT Patch Number 1978)
This update of PHP5 fixes : - CVE-2008-5624: CVSS v2 Base Score: 7.5 HIGH AV:N/AC:L/Au:N/C:P/I:P/A:P : Permissions, Privileges, and Access Control CWE-264 - CVE-2008-5625: CVSS v2 Base Score: 7.5 HIGH AV:N/AC:L/Au:N/C:P/I:P/A:P : Permissions, Privileges, and Access Control CWE-264 - Cross-Site...
openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-1993)
This update of php5 fixes: CVE-2008-5624: CVSS v2 Base Score: 7.5 HIGH AV:N/AC:L/Au:N/C:P/I:P/A:P: Permissions, Privileges, and Access Control CWE-264 CVE-2008-5625: CVSS v2 Base Score: 7.5 HIGH AV:N/AC:L/Au:N/C:P/I:P/A:P: Permissions, Privileges, and Access Control CWE-264 CVE-2008-5814: CVSS v2...
openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-1993)
This update of php5 fixes: CVE-2008-5624: CVSS v2 Base Score: 7.5 HIGH AV:N/AC:L/Au:N/C:P/I:P/A:P: Permissions, Privileges, and Access Control CWE-264 CVE-2008-5625: CVSS v2 Base Score: 7.5 HIGH AV:N/AC:L/Au:N/C:P/I:P/A:P: Permissions, Privileges, and Access Control CWE-264 CVE-2008-5814: CVSS v2...
openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-1993)
This update of php5 fixes: CVE-2008-5624: CVSS v2 Base Score: 7.5 HIGH AV:N/AC:L/Au:N/C:P/I:P/A:P: Permissions, Privileges, and Access Control CWE-264 CVE-2008-5625: CVSS v2 Base Score: 7.5 HIGH AV:N/AC:L/Au:N/C:P/I:P/A:P: Permissions, Privileges, and Access Control CWE-264 CVE-2008-5814: CVSS v2...
Gentoo Security Advisory GLSA 201001-03 (php)
The remote host is missing updates announced in advisory GLSA 201001-03. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Fedora Core 10 FEDORA-2009-3768 (maniadrive)
The remote host is missing an update to maniadrive announced via advisory FEDORA-2009-3768. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...
Fedora Core 9 FEDORA-2009-3848 (maniadrive)
The remote host is missing an update to maniadrive announced via advisory FEDORA-2009-3848. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...
Fedora Core 10 FEDORA-2009-3768 (maniadrive)
The remote host is missing an update to maniadrive announced via advisory FEDORA-2009-3768. OpenVAS Vulnerability Test $Id: fcore20093768.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-3768 maniadrive Authors: Thomas Reinke Copyright: Copyright c...
[security bulletin] HPSBMA02426 SSRT090053 rev.1 - HP System Management Homepage (SMH) for Linux and Windows Running PHP and OpenSSL, Remote Cross Site Scripting (XSS), Unauthorized Access
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01743291 Version: 1 HPSBMA02426 SSRT090053 rev.1 - HP System Management Homepage SMH for Linux and Windows Running PHP and OpenSSL, Remote Cross Site Scripting XSS, Unauthorized Access NOTICE: Th...
[SECURITY] [DSA 1789-1] New php5 packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1789-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst May 04, 2009 http://www.debian.org/security/faq -...
Ubuntu USN-761-1 (php5)
The remote host is missing an update to php5 announced via advisory USN-761-1. OpenVAS Vulnerability Test $Id: ubuntu7611.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7611.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-761-1 php5 Authors: Thomas Reinke...
Ubuntu: Security Advisory (USN-761-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RedHat Security Advisory RHSA-2009:0350
The remote host is missing updates announced in advisory RHSA-2009:0350. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. A heap-based buffer overflow flaw was found in PHP SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted...
RHEL 5 : php (RHSA-2009:0338)
Updated php packages that fix several security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. A...
php security update
5.1.6-23.2.el5 - ext/gd: fix overflow2 usage for CVE-2007-3996, CVE-2008-3658 5.1.6-23.1.el5 - add security fixes for CVE-2008-3658, CVE-2008-3660, CVE-2008-5498, CVE-2008-5557, CVE-2008-5814, and mbstring funcoverload issue 487369...
CVE-2008-5814
Cross-site scripting XSS vulnerability in PHP, possibly 5.2.7 and earlier, when displayerrors is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: because of the lack of details, it is unclear whether this is related to CVE-2006-0208...
CVE-2008-5814
The CVE-2008-5814 entry concerns a Cross-site scripting (XSS) vulnerability in PHP (affecting possibly 5.2.7 and earlier) that occurs when display_errors is enabled. Connected documents (e.g., MiracleLinux AXSA advisory and multiple Nessus plugins) explicitly list CVE-2008-5814 among affected PHP...