CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Ubuntu Update for Linux kernel vulnerabilities USN-1231-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12311.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for php5 USN-1231-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...

7.5CVSS0.4AI score0.36532EPSS

Exploits17References2

Tenable Nessus•added 2011/10/19 12:0 a.m.•60 views

Ubuntu 8.04 LTS / 10.04 LTS / 10.10 / 11.04 / 11.10 : php5 vulnerabilities (USN-1231-1)

Mateusz Kocielski, Marek Kroemeke and Filip Palian discovered that a stack-based buffer overflow existed in the socketconnect function's handling of long pathnames for AFUNIX sockets. A remote attacker might be able to exploit this to execute arbitrary code; however, the default compiler options...

7.5CVSS8.8AI score0.36532EPSS

Exploits17References9

NVD•added 2011/08/25 6:55 p.m.•11 views

CVE-2011-3267

PHP before 5.3.7 does not properly implement the errorlog function, which allows context-dependent attackers to cause a denial of service application crash via unspecified vectors...

5CVSS6.8AI score0.03845EPSS

Exploits0References8

Prion•added 2011/08/25 6:55 p.m.•19 views

Code injection

PHP before 5.3.7 does not properly implement the errorlog function, which allows context-dependent attackers to cause a denial of service application crash via unspecified vectors...

5CVSS6.8AI score0.03845EPSS

Exploits0References8Affected Software1

UbuntuCve•added 2011/08/25 12:0 a.m.•28 views

CVE-2011-3267

PHP before 5.3.7 does not properly implement the errorlog function, which allows context-dependent attackers to cause a denial of service application crash via unspecified vectors...

5CVSS5.9AI score0.03845EPSS

Exploits0References2

Packet Storm•added 2011/05/17 12:0 a.m.•26 views

Is-Human 1.4.2 WordPress Plugin Command Execution

Exploit Title: is-human 1.4.2 and prior Worpdress plugin. Date: 16.05.2011 Author: neworder www.neworder-ind.net Software Link: http://wordpress.org/extend/plugins/is-human/ Version: 1.4.2 Tested on: Linux Platform The vulnerability exists in /is-human/engine.php . It is possible to take control ...

0.3AI score

Exploits0

Ubuntu•added 2006/07/19 10:58 p.m.•109 views

USN-320-1: PHP vulnerabilities

The phpinfo PHP function did not properly sanitize long strings. A remote attacker could use this to perform cross-site scripting attacks against sites that have publicly-available PHP scripts that call phpinfo. Please note that it is not recommended to publicly expose phpinfo. CVE-2006-0996 An...

9.3CVSS8AI score0.30649EPSS

Exploits10

CVE•added 2002/06/25 4:0 a.m.•55 views

CVE-2001-1247

CVE-2001-1247 affects PHP 4.0.4pl1 and 4.0.5 in safe mode, enabling remote attackers to read and write files owned by the web server UID by uploading a PHP script that uses error_log to access files. Impact: partial confidentiality and integrity exposure via uploaded scripts. Remediation: upgrade...

6.4CVSS7.1AI score0.01155EPSS

Exploits1References4Affected Software1

Cvelist•added 2002/06/25 4:0 a.m.•17 views

CVE-2001-1247

PHP 4.0.4pl1 and 4.0.5 in safe mode allows remote attackers to read and write files owned by the web server UID by uploading a PHP script that uses the errorlog function to access the files...

6.7AI score0.01155EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by