Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

SUSE CVE
SUSE CVEadded 2023/02/15 6:8 a.m.1 views

SUSE CVE-2008-2666

Multiple directory traversal vulnerabilities in PHP 5.2.6 and earlier allow context-dependent attackers to bypass safemode restrictions by creating a subdirectory named http: and then placing ../ dot dot slash sequences in an http URL argument to the 1 chdir or 2 ftok function...

5CVSS7.2AI score0.07274EPSS
Exploits2References4
seebug.org
seebug.orgadded 2011/04/28 12:0 a.m.14 views

PHP <5.2.6 chdir() ftok()函数安全模式绕过漏洞

No description provided by source...

7.1AI score
Exploits0
0day.today
0day.todayadded 2011/03/13 12:0 a.m.27 views

PHP <= 5.3.6 shmop_read() Integer Overflow DoS

Exploit for linux platform in category dos / poc 0day.today 2018-02-02...

7AI score0.09998EPSS
Exploits5
exploitpack
exploitpackadded 2011/03/12 12:0 a.m.66 views

PHP 5.3.6 - shmop_read() Integer Overflow Denial of Service

PHP 5.3.6 - shmopread Integer Overflow Denial of Service...

7.5CVSS1AI score0.09998EPSS
Exploits5
seebug.org
seebug.orgadded 2009/12/14 12:0 a.m.10 views

PHP chdir ftok函数可能导致绕过safe_mode

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2008/12/10 12:0 a.m.40 views

PHP 'chdir()' and 'ftok()' 安全模式绕过漏洞

PHP' safemode‘设置的限制绕过漏洞。成功的攻击可能允许攻击者以确定存在的档案在未经批准的地点;其他攻击也是可能的。 开发这些问题可以让攻击者获得敏感的数据,可用于在其他的攻击。 这些弱点将是一个问题的共同主办的配置在多个用户可以创建并执行任意PHP脚本代码;在这种情况下, ' safemode设置'的限制, PHP的5.2.6是受影响的;其他版本也可能受到影响。 Slackware Linux 12.1 Slackware Linux 12.0 Slackware Linux -current PHP PHP 5.2.6 PHP PHP 5.2.5 PHP PHP 5.2.4...

7.1AI score
Exploits0
securityvulns
securityvulnsadded 2008/06/23 12:0 a.m.60 views

PHP safe_mode protection bypass

Protection bypass with posixaccess, chdir, ftok functions...

5CVSS2AI score0.07274EPSS
Exploits6References2Affected Software1
seebug.org
seebug.orgadded 2008/06/23 12:0 a.m.67 views

PHP 5 'chdir()'和'ftok()' 'safe_mode'安全绕过漏洞

BUGTRAQ ID: 29796 CVE ID:CVE-2008-2666 CNCVE ID:CNCVE-20082666 PHP 5是一款开放源代码的网络编程语言。 PHP 5 'chdir'和'ftok'函数存在'safemode绕过问题,远程攻击者可以利用漏洞在未授权位置检测文件是否存在等敏感信息。 问题代码如下: - --- PHPFUNCTIONchdir char str; int ret, strlen; if zendparseparametersZENDNUMARGS TSRMLSCC, "s", &str, &strlen == FAILURE RETURNFALS...

5CVSS6.3AI score0.07274EPSS
Exploits2
securityvulns
securityvulnsadded 2008/06/23 12:0 a.m.109 views

[Full-disclosure] PHP 5.2.6 chdir&#40;&#41;, ftok&#40;&#41; &#40;standard ext&#41; safe_mode bypass

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 PHP 5.2.6 chdir,ftok standard ext safemode bypass Author: Maksymilian Arciemowicz cXIb8O3 securityreason.com Date: - - Written: 10.05.2008 - - Public: 17.06.2008 SecurityReason Research SecurityAlert Id: 55 CVE: CVE-2008-2666 CWE: CWE-264 SecurityRisk...

5CVSS8.4AI score0.07274EPSS
Exploits2
Prion
Prionadded 2008/06/20 1:41 a.m.15 views

Directory traversal

Multiple directory traversal vulnerabilities in PHP 5.2.6 and earlier allow context-dependent attackers to bypass safemode restrictions by creating a subdirectory named http: and then placing ../ dot dot slash sequences in an http URL argument to the 1 chdir or 2 ftok function...

5CVSS6.8AI score0.07274EPSS
Exploits2References17Affected Software1
seebug.org
seebug.orgadded 2008/06/20 12:0 a.m.44 views

PHP chdir()和ftok()函数绕过safe_mode限制漏洞

BUGTRAQ ID: 29796 CVECAN ID: CVE-2008-2666 PHP是广泛使用的通用目的脚本语言,特别适合于Web开发,可嵌入到HTML中。 PHP的chdir和ftok函数中存在多个绕过safemode限制漏洞。 在chdir函数中: - --- PHPFUNCTIONchdir char str; int ret, strlen; if zendparseparametersZENDNUMARGS TSRMLSCC, "s", &str, &strlen == FAILURE RETURNFALSE; if PGsafemode &&...

5CVSS6.2AI score0.07274EPSS
Exploits2
Rows per page
Query Builder