Internet Bug Bounty: Use after free with assign by ref to overloaded objects

Reported: 2015-07-15 16:30 UTC Fixed: 2015-07-21 14:20 UTC Bug Report: https://bugs.php.net/bug.php?id=70083 Fixed in PHP 5.6: http://git.php.net/?p=php-src.git;a=commitdiff;h=f57cb13c566613eec0e1c2f6d96d18565436a9b7 Fixed in 7:...

php 5.0.5 代码执行

No description provided by source...

php 5.0.5 跨站脚本漏洞

No description provided by source...

Cross site scripting

The Foreign Function Interface ffi extension in PHP 5.0.5 does not follow safemode restrictions, which allows context-dependent attackers to execute arbitrary code by loading an arbitrary DLL and calling a function, as demonstrated by kernel32.dll and the WinExec function. NOTE: this issue does n...

CVE-2007-4528

CVE-2007-4528 concerns PHP’s Foreign Function Interface (ffi) extension in PHP 5.0.5, which does not enforce safe_mode restrictions. This can let context-dependent attackers load an arbitrary DLL and call a function (e.g., kernel32.dll and WinExec), yielding arbitrary code execution in affected c...

CVE-2007-4528

The Foreign Function Interface ffi extension in PHP 5.0.5 does not follow safemode restrictions, which allows context-dependent attackers to execute arbitrary code by loading an arbitrary DLL and calling a function, as demonstrated by kernel32.dll and the WinExec function. NOTE: this issue does n...

phpBB 2.0.17 - 'signature_bbcode_uid' Remot Command

!/usr/bin/perl phpBB new or die; $cookiejar = HTTP::Cookies-new; for$i=0;$icookiejar $cookiejar ; $res = $xpl-post $path.'profile.php?GLOBALSsignaturebbcodeuid=.%2B/e%00', Content = 'username' = $name, 'email' = $rand.'[email protected]', 'newpassword' = $password, 'passwordconfirm' =...

PHP < 5.0.5 Multiple Vulnerabilities

Binary data 3262.prm...