Lucene search
K

4 matches found

OSV
OSV
added 2016/09/18 2:59 a.m.9 views

CVE-2016-6639

Cloud Foundry PHP Buildpack aka php-buildpack before 4.3.18 and PHP Buildpack Cf-release before 242, as used in Pivotal Cloud Foundry PCF Elastic Runtime before 1.6.38 and 1.7.x before 1.7.19 and other products, place the .profile file in the htdocs directory, which might allow remote attackers t...

7.5CVSS6.5AI score0.01704EPSS
Exploits0References2
CVE
CVE
added 2016/09/18 1:0 a.m.49 views

CVE-2016-6639

Cloud Foundry PHP Buildpack (aka php-buildpack) and PHP Buildpack Cf-release prior to 4.3.18 / 242 expose the .profile file in the htdocs directory, enabling remote HTTP GET requests to disclose sensitive information. Root cause: default exposure of .profile within the buildpack payload used by P...

7.5CVSS7.4AI score0.01704EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2016/09/18 1:0 a.m.26 views

CVE-2016-6639

Cloud Foundry PHP Buildpack aka php-buildpack before 4.3.18 and PHP Buildpack Cf-release before 242, as used in Pivotal Cloud Foundry PCF Elastic Runtime before 1.6.38 and 1.7.x before 1.7.19 and other products, place the .profile file in the htdocs directory, which might allow remote attackers t...

7.4AI score0.01704EPSS
Exploits0References2
Cloud Foundry
Cloud Foundry
added 2016/09/09 12:0 a.m.58 views

CVE-2016-6639: PHP Buildpack exposes .profile file | Cloud Foundry

CVE-2016-6639: PHP Buildpack exposes .profile file Medium Vendor Cloud Foundry Foundation Versions Affected PHP Buildpack versions prior to v4.3.18 Cf-release versions prior to v242 Description The .profile file, which can potentially include environment variables and credentials, is exposed by...

7.5CVSS7.7AI score0.01704EPSS
Exploits0
Rows per page
Query Builder