64 matches found
SUSE CVE-2015-4026
The pcntlexec implementation in PHP before 5.4.41, 5.5.x before 5.5.25, and 5.6.x before 5.6.9 truncates a pathname upon encountering a \x00 character, which might allow remote attackers to bypass intended extension restrictions and execute files with unexpected names via a crafted first argument...
undertow: servletPath is normalized incorrectly leading to dangerous application mapping which could result in security bypass
A flaw was found in Undertow, where the servlet container causes the servletPath to normalize incorrectly by truncating the path after the semicolon. The flaw may lead to application mapping, resulting in a security bypass...
undertow: servletPath is normalized incorrectly leading to dangerous application mapping which could result in security bypass
A flaw was found in Undertow, where the servlet container causes the servletPath to normalize incorrectly by truncating the path after the semicolon. The flaw may lead to application mapping, resulting in a security bypass...
undertow: servletPath is normalized incorrectly leading to dangerous application mapping which could result in security bypass
A flaw was found in Undertow, where the servlet container causes the servletPath to normalize incorrectly by truncating the path after the semicolon. The flaw may lead to application mapping, resulting in a security bypass...
CVE-2020-1757
The connected Red Hat advisory RHSA-2024:5856 confirms CVE-2020-1757 in Undertow: servletPath normalization could truncate a path after a semicolon, enabling dangerous application mapping and a security bypass. Affected products/versions include Undertow-based components within Red Hat JBoss EAP ...
File inclusion vulnerability in BlueCMS us***.php9 page
BlueCMS is a free professional local portal system developed by open source combination PHP + MYSQL, focusing on local portal CMS. A file inclusion vulnerability exists in the BlueCMS us.php9 page. A remote attacker can construct a payload with the parameter $POST'pay' in the script and utilize t...
Mozilla Firefox ESR < 45.8 Multiple Vulnerabilities
Binary data 9987.prm...
UBUNTU-CVE-2015-4026
The pcntlexec implementation in PHP before 5.4.41, 5.5.x before 5.5.25, and 5.6.x before 5.6.9 truncates a pathname upon encountering a \x00 character, which might allow remote attackers to bypass intended extension restrictions and execute files with unexpected names via a crafted first argument...
UBUNTU-CVE-2015-4025
PHP before 5.4.41, 5.5.x before 5.5.25, and 5.6.x before 5.6.9 truncates a pathname upon encountering a \x00 character in certain situations, which allows remote attackers to bypass intended extension restrictions and access files or directories with unexpected names via a crafted argument to 1...
openSUSE Security Update : php5 (openSUSE-2015-295)
PHP was updated to fix three security issues. The following vulnerabilities were fixed : - use-after-free vulnerability in the processnesteddata function CVE-2015-2787 bnc924972 - unserialize SoapClient type confusion bnc925109 - moveuploadedfile truncates a pathNAME upon encountering a x00...
CVE-2014-5015
bozotic HTTP server aka bozohttpd before 20140708, as used in NetBSD, truncates paths when checking .htpasswd restrictions, which allows remote attackers to bypass the HTTP authentication scheme and access restrictions via a long path...
Design/Logic Flaw
bozotic HTTP server aka bozohttpd before 20140708, as used in NetBSD, truncates paths when checking .htpasswd restrictions, which allows remote attackers to bypass the HTTP authentication scheme and access restrictions via a long path...
UBUNTU-CVE-2014-5015
bozotic HTTP server aka bozohttpd before 20140708, as used in NetBSD, truncates paths when checking .htpasswd restrictions, which allows remote attackers to bypass the HTTP authentication scheme and access restrictions via a long path...
Linux Kernel 2.2.x/2.3/2.4.x d_path() Path Truncation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4367/info The Linux kernel dpath function converts a dentry structure into an ASCII path name. The full path to the specified dentry is returned in a fixed length buffer of size PAGESIZE bytes. Reportedly, if a dentry...
PHP 3/4/5 Multiple Local And Remote Vulnerabilities (2)
No description provided by source. source: http://www.securityfocus.com/bid/11964/info PHP4 and PHP5 are reported prone to multiple local and remote vulnerabilities that may lead to code execution within the context of the vulnerable process. The following specific issues are reported: A heap-bas...
PHP 3/4/5 Multiple Local And Remote Vulnerabilities (1)
No description provided by source. source: http://www.securityfocus.com/bid/11964/info PHP4 and PHP5 are reported prone to multiple local and remote vulnerabilities that may lead to code execution within the context of the vulnerable process. The following specific issues are reported: A heap-bas...
DEDECMS website management system plus/carbuyaction. php local include vulnerability-vulnerability warning-the black bar safety net
DedeCms based on PHP+MySQL technology development, supporting Windows, Linux, Unix and other server platforms, from the 2 0 0 4 year began to publish the first version began, so far has released five large version. DedeCms in a simple, robust, flexible, open source several features occupied the...
CVE-2004-1064
The safe mode checks in PHP 4.x to 4.3.9 and PHP 5.x to 5.0.2 truncate the file path before passing the data to the realpath function, which could allow attackers to bypass safe mode. NOTE: this issue was originally REJECTed by its CNA before publication, but that decision is in active dispute...
CVE-2004-1064
The safe mode checks in PHP 4.x to 4.3.9 and PHP 5.x to 5.0.2 truncate the file path before passing the data to the realpath function, which could allow attackers to bypass safe mode. NOTE: this issue was originally REJECTed by its CNA before publication, but that decision is in active dispute...
PHP 345 - Multiple LocalRemote Vulnerabilities (2)
PHP 345 - Multiple LocalRemote Vulnerabilities 2 source: https://www.securityfocus.com/bid/11964/info PHP4 and PHP5 are reported prone to multiple local and remote vulnerabilities that may lead to code execution within the context of the vulnerable process. The following specific issues are...