CVE-2007-4825

Directory traversal vulnerability in PHP 5.2.4 and earlier allows attackers to bypass openbasedir restrictions and possibly execute arbitrary code via a .. dot dot in the dl function...

CVE-2007-4825

CVE-2007-4825 is a directory traversal vulnerability in PHP 5.2.4 and earlier that allows bypassing open_basedir restrictions and may enable arbitrary code execution via .. in the dl() function. The vulnerability is cited in multiple advisories (SUSE/CVE-2007-4825) and is reflected in an NVD entr...

PHP 5.2.4 <= various mysql functions safemode & open_basedir bypass

Application: PHP =5.2.4 Web Site: http://php.net Platform: unix Bug: safemode & openbasedir bypass ------------------------------------------------------- 1 Introduction 2 Bug 3 Proof of concept 4 Credits =========== 1 Introduction =========== "PHP is a widely-used general-purpose scripting...

PHP <=5.2.4 open_basedir bypass & code exec & denial of service

Application: PHP =5.2.4 Web Site: http://php.net Platform: unix Bug: openbasedir bypass & code exec & denial of service/some people call this as a buffer overflow , but it's a denial of service./ special condition: default php-memory-limit ------------------------------------------------------- 1...

php524-basedir.txt

Application: PHP dll . / Bug: openbasedir bypass & code exec & denial of service/some people call this as a buffer overflow , but it's a denial of service./ special condition: default php-memory-limit ------------------------------------------------------- 1 Introduction 2 Bug 3 Proof of concept ...

PHP MySQL/MySQLi扩展绕过安全限制漏洞

CVECAN ID: CVE-2007-3997 PHP是广泛使用的通用目的脚本语言，特别适合于Web开发，可嵌入到HTML中。 PHP的MySQL和MySQLi扩展在处理畸形数据的SQL请求时，远程攻击者可能利用此漏洞执行SQL注入攻击。 PHP的MySQL和MySQLi扩展没有正确地处理包含有LOCAL INFILE的SQL查询请求，如果远程攻击者向安装了这些扩展的服务器提交了恶意SQL请求的话，就可以绕过openbasedir和safemode安全限制，执行非授权操作。请注意不要依赖于共享主机MySQLd local-infile=0选项，因为这个选项是服务器选项，因此不会影响客户...

CVE-2007-4663

Directory traversal vulnerability in PHP before 5.2.4 allows attackers to bypass openbasedir restrictions via unspecified vectors involving the glob function...

Directory traversal

Directory traversal vulnerability in PHP before 5.2.4 allows attackers to bypass openbasedir restrictions via unspecified vectors involving the glob function...

CVE-2007-4663

Directory traversal vulnerability in PHP before 5.2.4 allows attackers to bypass openbasedir restrictions via unspecified vectors involving the glob function...

CVE-2007-4663

CVE-2007-4663 affects PHP prior to 5.2.4. A directory traversal vulnerability allows bypass of open_basedir restrictions via the glob-based path handling. Affected product: PHP (versions before 5.2.4). Root cause: improper sanitization of glob results leading to potential traversal outside the op...

CVE-2007-4652

The session extension in PHP before 5.2.4 might allow local users to bypass openbasedir restrictions via a session file that is a symlink...

Design/Logic Flaw

The session extension in PHP before 5.2.4 might allow local users to bypass openbasedir restrictions via a session file that is a symlink...

CVE-2007-4652

The session extension in PHP before 5.2.4 might allow local users to bypass openbasedir restrictions via a session file that is a symlink...

CVE-2007-4652

The session extension in PHP before 5.2.4 might allow local users to bypass openbasedir restrictions via a session file that is a symlink...

CVE-2007-4652

The CVE-2007-4652 issue affects PHP before 5.2.4, where an attacker could bypass open_basedir restrictions by abusing a session file that is a symlink. This local-privilege impact occurs through the Session extension, enabling bypass of directory containment for affected PHP processes. The core v...

CVE-2007-3997

The 1 MySQL and 2 MySQLi extensions in PHP 4 before 4.4.8, and PHP 5 before 5.2.4, allow remote attackers to bypass safemode and openbasedir restrictions via MySQL LOCAL INFILE operations, as demonstrated by a query with LOAD DATA LOCAL INFILE...

Design/Logic Flaw

The 1 MySQL and 2 MySQLi extensions in PHP 4 before 4.4.8, and PHP 5 before 5.2.4, allow remote attackers to bypass safemode and openbasedir restrictions via MySQL LOCAL INFILE operations, as demonstrated by a query with LOAD DATA LOCAL INFILE...

php -- multiple vulnerabilities

The PHP development team reports: Security Enhancements and Fixes in PHP 5.2.4: Fixed a floating point exception inside wordwrap Reported by Mattias Bengtsson Fixed several integer overflows inside the GD extension Reported by Mattias Bengtsson Fixed size calculation in chunksplit Reported by...

Confixx Pro 3.3.1 (saveserver.php) Remote File Inclusion Vulnerability

No description provided by source. Confixx = PRO 3.3.1 Remote File Inclusion Vulnerability ! Application homepage : http://www.swsoft.com/de/products/confixx/ ! Author : H4 / XPK ! Contact : http://xpkzxc.com/ ! Bug discovered : 2007-07-21 ! Bug published : 2007-07-24 ! Risk : Moderate Do not...

Confixx Pro <= 3.3.1 (saveserver.php) Remote File Inclusion Vulnerability

No description provided by source. Confixx = PRO 3.3.1 Remote File Inclusion Vulnerability ! Application homepage : http://www.swsoft.com/de/products/confixx/ ! Author : H4 / XPK ! Contact : http://xpkzxc.com/ ! Bug discovered : 2007-07-21 ! Bug published : 2007-07-24 ! Risk : Moderate Do not...