Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2014-3981

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - acinclude.m4, as used in the configure script in PHP 5.5.13 and earlier, allows local users to overwrite arbitrary files via a symlink attack on the...

3.3CVSS8AI score0.00782EPSS
Exploits0References2
Hacker One
Hacker One
added 2016/04/16 10:49 p.m.118 views

Gratipay: PHP 5.4.45 is Outdated and Full of Preformance Interupting Arbitrary Code Execution Bugs

Your PHP version is affected by quite a few remote arbitrary code execution, remote file renaming, and remote file rewriting bugs that require no authentication and can cause big problems, from performance interruptions and messing with server files to DoS attacks. These are not related to any...

7.5CVSS8.4AI score0.14771EPSS
Exploits2
OpenVAS
OpenVAS
added 2015/09/29 12:0 a.m.67 views

Gentoo Security Advisory GLSA 201408-11

Gentoo Linux Local Security Checks GLSA 201408-11 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

7.5CVSS6.9AI score0.35635EPSS
Exploits16References1
Tenable Nessus
Tenable Nessus
added 2014/10/17 12:0 a.m.130 views

PHP 5.6.0 Multiple Vulnerabilities

According to its banner, the version of PHP installed on the remote host is a development version of 5.6.0. It is, therefore, affected by multiple vulnerabilities. Note that Nessus has not attempted to exploit this issue but has instead relied only on application's self-reported version number...

7.5CVSS7.1AI score0.30128EPSS
Exploits16References29
Tenable Nessus
Tenable Nessus
added 2014/07/14 12:0 a.m.57 views

Slackware 14.0 / 14.1 / current : php (SSA:2014-192-01)

New php packages are available for Slackware 14.0, 14.1, and -current to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2014-192-01. The text itself is copyright C...

7.5CVSS7AI score0.30128EPSS
Exploits5References9
Slackware Linux
Slackware Linux
added 2014/07/12 3:48 a.m.72 views

[slackware-security] php

New php packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/php-5.4.30-i486-1slack14.1.txz: Upgraded. This update fixes bugs and security issues. For more information, see:...

7.5CVSS7.9AI score0.30128EPSS
Exploits5
CVE
CVE
added 2014/06/08 6:0 p.m.248 views

CVE-2014-3981

CVE-2014-3981 affects PHP 5.5.13 and earlier. The vulnerability arises from the acinclude.m4 usage in the configure script, enabling a local user to overwrite arbitrary files via a symlink attack on the /tmp/phpglibccheck file. Impact is local privilege-related, enabling file tampering. The provi...

3.3CVSS8.5AI score0.00782EPSS
Exploits0References12Affected Software1
Rows per page
Query Builder