Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

47 matches found

Cvelist
Cvelistadded 2016/05/16 10:0 a.m.37 views

CVE-2015-4642

The escapeshellarg function in ext/standard/exec.c in PHP before 5.4.42, 5.5.x before 5.5.26, and 5.6.x before 5.6.10 on Windows allows remote attackers to execute arbitrary OS commands via a crafted string to an application that accepts command-line arguments for a call to the PHP system functio...

7.7AI score0.05999EPSS
Exploits2References7
Tenable Nessus
Tenable Nessusadded 2016/02/29 12:0 a.m.25 views

Tenable SecurityCenter PHP Character Handling (TNS-2015-09)

The SecurityCenter application installed on the remote host contains a bundled version of PHP that is prior to 5.4.43. It is, therefore, affected by an exclamation mark character handling issue in the escapeshellcmd and escapeshellarg PHP functions. A remote attacker can exploit this to substitut...

5.7AI score
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2015/07/17 5:44 a.m.1 views

PHP for Windows vulnerable to OS command injection

Overview PHP for Windows contains an OS command injection due to a processing flaw in the escapeshellarg function. Masahiro Yamada reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact Specifying a specially craft...

10CVSS7.5AI score0.05999EPSS
Exploits2References11
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2015/07/17 12:0 a.m.57 views

JVN#73568461: PHP for Windows vulnerable to OS command injection

PHP for Windows contains an OS command injection due to a processing flaw in the escapeshellarg function. Impact Specifying a specially crafted parameter in the escapeshellarg function may result in an arbitrary OS command being executed. Solution Apply the patch Apply the patch according to the...

10CVSS7.6AI score0.05999EPSS
Exploits2
securityvulns
securityvulnsadded 2007/12/16 12:0 a.m.64 views

Anon Proxy Server - Remote Code Execution

By Michael Brooks Vulnerability type: Multiple Remote System commands execution. Software: Anon Proxy Server Home page:http://sourceforge.net/projects/anonproxyserver/ Affects version: 0.100 Example exploit:...

1.4AI score
Exploits0
exploitpack
exploitpackadded 2007/12/14 12:0 a.m.28 views

Anon Proxy Server 0.1000 - Remote Command Execution

Anon Proxy Server 0.1000 - Remote Command Execution By Michael Brooks Vulnerability type: Multiple Remote System commands execution. Software: Anon Proxy Server Home page:http://sourceforge.net/projects/anonproxyserver/ Affects version: 0.100 Example exploit:...

0.4AI score
Exploits0
securityvulns
securityvulnsadded 2004/06/08 12:0 a.m.76 views

PHP for Windows all version shell filtering bug

Subject: PHP for Windows all version shell filtering bug Product: PHP for Windows all versions 4.3.1, 4.2.3, 3.0.17 tested with Windows 2000 SP3 all fixes + IIS Vendor: php.net Risk: High for affected systems Remote: Yes Author: 3APA3A [email protected] Intro: PHP is scripting language used...

2AI score
Exploits0
Rows per page
Query Builder