WordPress Plugin Ultimate Membership Pro 3.3 - SQL Injection

Vendor Homepage: http://wpindeed.com/ Software Link: http://codecanyon.net/item/ultimate-membership-pro-wordpress-plugin/12159253 Version: 3.3 Tested on: Debian 8, PHP 5.6.17-3 Type: Unauthenticated Blind SQLi, Unauthenticated Payment Bypass Time line: Found 07-Jun-2016, Vendor notified...

WordPress Ultimate Membership Pro 3.3 Plugin - SQL Injection

Exploit for php platform in category web applications Vendor Homepage: http://wpindeed.com/ Software Link: http://codecanyon.net/item/ultimate-membership-pro-wordpress-plugin/12159253 Version: 3.3 Tested on: Debian 8, PHP 5.6.17-3 Type: Unauthenticated Blind SQLi, Unauthenticated Payment Bypass...

WordPress Plugin Premium SEO Pack 1.9.1.3 - wp_options Overwrite

Vendor Homepage: http://aa-team.com/ Software Link: http://codecanyon.net/item/premium-seo-pack-wordpress-plugin/6109437?srank=2 Version: 1.9.1.3 Tested on: Debian 8, PHP 5.6.17-3 Type: Authenticated customer, subscriber wpoptions overwrite Time line: Found 05-Jun-2016, Vendor notified 05-Jun-201...

WordPress Plugin Social Stream 1.5.15 - wp_options Overwrite

Vendor Homepage: Software Link: http://codecanyon.net/item/wordpress-social-stream/2201708?srank=15 Version: 1.5.15 Tested on: Debian 8, PHP 5.6.17-3 Type: Authenticated wpoptions overwrite Time line: Found 14-May-2016, Vendor notified 14-May-2016, Vendor fixed: v1.5.16 19/05/2016 Current Version...

WordPress Theme Creative Multi-Purpose 9.1.3 - Persistent Cross-Site Scripting

Vendor Homepage: http://bridge.qodeinteractive.com/ Software Link: http://themeforest.net/item/bridge-creative-multipurpose-wordpress-theme/7315054 Version: 9.1.3 Tested on: Debian 8, PHP 5.6.17-3 Type: Stored XSS, Ability to overwrite any theme settings. Time line: Found 23-Apr-2016, Vendor...

Fedora 23 : php-5.6.17-1.fc23 (2016-558167a417)

07 Jan 2016, PHP 5.6.17 Core: Fixed bug php66909 configure fails utf8tomutf7 test. Michael Orlitzky Fixed bug php70958 Invalid opcode while using ::class as trait method paramater default value. Laruence Fixed bug php70957 self::class can not be resolved with reflection for abstract class. Laruen...

Fedora 22 : php-5.6.17-1.fc22 (2016-5207e0c1a1)

07 Jan 2016, PHP 5.6.17 Core: Fixed bug php66909 configure fails utf8tomutf7 test. Michael Orlitzky Fixed bug php70958 Invalid opcode while using ::class as trait method paramater default value. Laruence Fixed bug php70957 self::class can not be resolved with reflection for abstract class. Laruen...

Internet Bug Bounty: PHP-FPM fpm_log.c memory leak and buffer overflow

The FastCGI Process Manager FPM SAPI of PHP was vulnerable to memory leak and buffer overflow in the access logging feature. PHP-FPM offers customization of the access log lines based on format string variables which can be specified with the access.format option of the FPM configuration file. Th...

Internet Bug Bounty: Arbitary Memory Read via gdImageRotateInterpolated Array Index Out of Bounds

1Bug report at: https://bugs.php.net/bug.php?id=70976&edit=2 2 Patch submitted: https://www.dropbox.com/s/rr5xti66cpt17mn/gdinterpolation.patch?dl=0 3 Issue has been fixed in PHP 5.5.31, 5.6.17, 7.0.2 ---Vuln Description-- This is the function prototype for ImageRotate: resource imagerotate...