Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/03 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2010-3065

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The default session serializer in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 does not properly handle the PSUNDEFMARKER marker, which allows context-dependent...

5CVSS6.2AI score0.0219EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 5:57 a.m.3 views

SUSE CVE-2010-3065

The default session serializer in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 does not properly handle the PSUNDEFMARKER marker, which allows context-dependent attackers to modify arbitrary session variables via a crafted session variable name...

5CVSS7.1AI score0.0219EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.45 views

Oracle: Security Advisory (ELSA-2010-0919)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS8.6AI score0.11528EPSS
Exploits7References2
Check Point Advisories
Check Point Advisories
added 2013/10/20 12:0 a.m.3 views

PHP Session Serializer Session Data Injection (CVE-2010-3065)

A Session Data Injection vulnerability has been reported in php framework...

6.8AI score0.0219EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.38 views

Scientific Linux Security Update : php on SL4.x, SL5.x i386/x86_64

An input validation flaw was discovered in the PHP session serializer. If a PHP script generated session variable names from untrusted user input, a remote attacker could use this flaw to inject an arbitrary variable into the PHP session. CVE-2010-3065 An information leak flaw was discovered in t...

6.8CVSS6.6AI score0.11528EPSS
Exploits7References8
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.52 views

CentOS Update for php CESA-2010:0919 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.8CVSS6.7AI score0.11528EPSS
Exploits7References2
OpenVAS
OpenVAS
added 2010/12/09 12:0 a.m.34 views

RedHat Update for php RHSA-2010:0919-01

Check for the Version of php OpenVAS Vulnerability Test RedHat Update for php RHSA-2010:0919-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

6.8CVSS8.6AI score0.11528EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2010/12/02 12:0 a.m.51 views

SuSE 11 / 11.1 Security Update : Apache 2 (SAT Patch Numbers 2880 / 2881)

PHP was updated to version 5.2.14 to fix serveral security issues : - CVE-2010-1860 - CVE-2010-1862 - CVE-2010-1864 - CVE-2010-1914 - CVE-2010-1915 - CVE-2010-1917 - CVE-2010-2093 - CVE-2010-2094 - CVE-2010-2097 - CVE-2010-2100 - CVE-2010-2101 - CVE-2010-2190 - CVE-2010-2191 - CVE-2010-2225 -...

9.8CVSS10AI score0.12652EPSS
Exploits23References45
Oracle linux
Oracle linux
added 2010/11/29 12:0 a.m.59 views

php security update

5.1.6-27.3 - add security fix for CVE-2010-3870 626735 5.1.6-27.2 - fix varexport test cases 626735 5.1.6-27.1 - add security fixes for CVE-2010-1917, CVE-2010-3065, CVE-2010-2531, CVE-2010-1128, CVE-2010-0397 626735...

6.8CVSS1.3AI score0.11528EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2010/10/06 12:0 a.m.40 views

openSUSE Security Update : apache2-mod_php5 (openSUSE-SU-2010:0678-1)

PHP was updated to version 5.2.14 to fix several security issues : - CVE-2010-1860 - CVE-2010-1862 - CVE-2010-1864 - CVE-2010-1914 - CVE-2010-1915 - CVE-2010-1917 - CVE-2010-2093 - CVE-2010-2094 - CVE-2010-2097 - CVE-2010-2100 - CVE-2010-2101 - CVE-2010-2190 - CVE-2010-2191 - CVE-2010-2225 -...

7.5CVSS8.7AI score0.12652EPSS
Exploits20References41
securityvulns
securityvulns
added 2010/09/27 12:0 a.m.120 views

[USN-989-1] PHP vulnerabilities

=========================================================== Ubuntu Security Notice USN-989-1 September 20, 2010 php5 vulnerabilities CVE-2010-0397, CVE-2010-1128, CVE-2010-1129, CVE-2010-1130, CVE-2010-1866, CVE-2010-1868, CVE-2010-1917, CVE-2010-2094, CVE-2010-2225, CVE-2010-2531, CVE-2010-2950,...

7.5CVSS0.6AI score0.12652EPSS
Exploits11
Tenable Nessus
Tenable Nessus
added 2010/09/13 12:0 a.m.38 views

openSUSE Security Update : apache2-mod_php5 (openSUSE-SU-2010:0599-1)

PHP was updated to version 5.3.3 to fix serveral security issues. CVE-2010-0397, CVE-2010-1860, CVE-2010-1862, CVE-2010-1864, CVE-2010-1866, CVE-2010-1914, CVE-2010-1915, CVE-2010-1917, CVE-2010-2093, CVE-2010-2094, CVE-2010-2097, CVE-2010-2100, CVE-2010-2101, CVE-2010-2190, CVE-2010-2191,...

9.8CVSS8AI score0.12652EPSS
Exploits24References44
Tenable Nessus
Tenable Nessus
added 2010/08/23 12:0 a.m.48 views

Debian DSA-2089-1 : php5 - several vulnerabilities

Several remote vulnerabilities have been discovered in PHP 5, an hypertext preprocessor. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2010-1917 The fnmatch function can be abused to conduct denial of service attacks by crashing the interpreter by the...

7.5CVSS9.1AI score0.07937EPSS
Exploits4References8
CVE
CVE
added 2010/08/20 7:0 p.m.109 views

CVE-2010-3065

CVE-2010-3065 affects PHP’s default session serializer in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2, where PS_UNDEF_MARKER is not handled properly. This allows context-dependent attackers to modify arbitrary session variables via crafted session variable names. Several connected advisories and...

5CVSS9.2AI score0.0219EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2010/08/20 7:0 p.m.27 views

CVE-2010-3065

The default session serializer in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 does not properly handle the PSUNDEFMARKER marker, which allows context-dependent attackers to modify arbitrary session variables via a crafted session variable name...

9.4AI score0.0219EPSS
Exploits1References7
Rows per page
Query Builder