Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedHat Linux
RedHat Linuxadded 2010/11/29 9:31 p.m.3 views

php: LCG entropy weakness

The Linear Congruential Generator LCG in PHP before 5.2.13 does not provide the expected entropy, which makes it easier for context-dependent attackers to guess values that were intended to be unpredictable, as demonstrated by session cookies generated by using the uniqid function...

6.4CVSS5.8AI score0.07873EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2010/07/01 12:0 a.m.12 views

Fedora 12 : maniadrive-1.2-21.fc12 / php-5.3.2-1.fc12 (2010-4212)

This is a maintenance release in the 5.3 series, which includes a large number of bug fixes. Security Enhancements and Fixes in PHP 5.3.2: - Improved LCG entropy. Rasmus, Samy Kamkar - Fixed safemode validation inside tempnam when the directory path does not end with a /. Martin Jansen - Fixed a...

5.6AI score
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2010/07/01 12:0 a.m.15 views

Fedora 11 : maniadrive-1.2-18.fc11 / php-5.2.13-1.fc11 (2010-4114)

This release focuses on improving the stability of the PHP 5.2.x branch with over 40 bug fixes, some of which are security related, including: Fixed safemode validation inside tempnam when the directory path does not does not end with a / Fixed a possible openbasedir/safemode bypass in the sessio...

5.6AI score
Exploits0References4
OpenVAS
OpenVASadded 2010/03/12 12:0 a.m.7 views

Mandriva Update for php MDVSA-2010:058 (php)

Check for the Version of php OpenVAS Vulnerability Test Mandriva Update for php MDVSA-2010:058 php Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

0.1AI score
Exploits0References2
OpenVAS
OpenVASadded 2010/02/27 12:0 a.m.39 views

PHP < 5.2.13 Multiple Vulnerabilities

PHP is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; ifdescription...

7.5CVSS7.6AI score0.07873EPSS
Exploits1References7
Tenable Nessus
Tenable Nessusadded 2010/02/26 12:0 a.m.60 views

PHP < 5.3.2 / 5.2.13 Multiple Vulnerabilities

According to its banner, the version of PHP installed on the remote host is older than 5.3.2 / 5.2.13. Such versions may be affected by several security issues : - Directory paths not ending with '/' may not be correctly validated inside 'tempnam' in 'safemode' configuration. - It may be possible...

7.5CVSS5.6AI score0.09296EPSS
Exploits2References10
exploitpack
exploitpackadded 2010/02/26 12:0 a.m.14 views

PHP 5.3.1 - LCG Entropy Security

PHP 5.3.1 - LCG Entropy Security source: https://www.securityfocus.com/bid/38430/info PHP is prone to a security vulnerability that affects LCG Linear Congruential entropy. Attackers can exploit this issue to steal sessions or other sensitive data. Versions prior to PHP 5.2.13 are affected...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2009/11/20 12:0 a.m.44 views

PHP 5.3 < 5.3.1 Multiple Vulnerabilities

According to its banner, the version of PHP 5.3 installed on the remote host is older than 5.3.1. Such versions may be affected by several security issues : - Sanity checks are missing in exif processing. - It is possible to bypass the 'safemode' configuration setting using 'tempnam'. - It is...

7.5CVSS5.2AI score0.12041EPSS
Exploits8References8
Rows per page
Query Builder