Lucene search
K

106 matches found

Tenable Nessus
Tenable Nessus
added 2019/06/14 12:0 a.m.23 views

PHP 5.6.x < 5.6.33 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.33. It is, therefore, affected by multiple vulnerabilities. Note that the scanner has not attempted to exploit this issue but has instead relied only on the application's self-reported version numbe...

6.1CVSS7AI score0.79949EPSS
Exploits1References3
Veracode
Veracode
added 2019/05/02 6:2 a.m.50 views

Arbitrary Code Execution

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. T...

9.8CVSS9AI score0.36974EPSS
Exploits78References7Affected Software3
Tenable Nessus
Tenable Nessus
added 2019/03/13 12:0 a.m.76 views

PHP 7.1.x < 7.1.26 Multiple vulnerabilities

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.40, 7.1.x prior to 7.1.26, 7.2.x prior to 7.2.14 or 7.3.x prior to 7.3.1. It is, therefore, affected by multiple vulnerabilities: - An integer underflow condition exists in gdContributionsAlloc...

9.8CVSS9.3AI score0.65116EPSS
Exploits13References9
Tenable Nessus
Tenable Nessus
added 2019/03/13 12:0 a.m.78 views

PHP 5.6.x < 5.6.40 Multiple vulnerabilities

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.40, 7.1.x prior to 7.1.26, 7.2.x prior to 7.2.14 or 7.3.x prior to 7.3.1. It is, therefore, affected by multiple vulnerabilities: - An integer underflow condition exists in gdContributionsAlloc...

9.8CVSS9.3AI score0.65116EPSS
Exploits13References9
Tenable Nessus
Tenable Nessus
added 2019/02/06 12:0 a.m.7946 views

PHP 5.6.x < 5.6.40 Multiple vulnerabilities.

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.40. It is, therefore, affected by multiple vulnerabilities: - An integer underflow condition exists in gdContributionsAlloc function in gdinterpolation.c. An unauthenticated, remote attacker can hav...

9.8CVSS7.4AI score0.65116EPSS
Exploits11References7
Tenable Nessus
Tenable Nessus
added 2019/01/31 12:0 a.m.18 views

PHP 5.6.x < 5.6.37 exif_thumbnail_extract() DoS

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.37 or 7.1.x prior to 7.1.20. It is, therefore, affected by a denial of service vulnerability. Note that the scanner has not tested for these issues but has instead relied only on the application's...

7.5CVSS6.9AI score0.08975EPSS
Exploits2References4
exploitpack
exploitpack
added 2019/01/10 12:0 a.m.14 views

eBrigade ERP 4.5 - SQL Injection

eBrigade ERP 4.5 - SQL Injection Exploit Title: eBrigade ERP 4.5 - SQL Injection Dork: N/A Date: 2019-01-10 Exploit Author: Ihsan Sencan Vendor Homepage: https://ebrigade.net/ Software Link: https://netcologne.dl.sourceforge.net/project/ebrigade/ebrigade/eBrigade%204.5/ebrigade4.5.zip Version: 4....

0.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/01/09 12:0 a.m.55 views

PHP 5.6.x < 5.6.10 Multiple Vulnerabilities

According to its banner, the version of PHP 5.6.x running on the remote web server is prior to 5.6.10. It is, therefore, affected by multiple vulnerabilities : - Multiple heap buffer overflow conditions exist in the bundled Perl-Compatible Regular Expression PCRE library due to improper validatio...

10CVSS9.6AI score0.16948EPSS
Exploits5References10
Tenable Nessus
Tenable Nessus
added 2019/01/09 12:0 a.m.19 views

PHP 5.6.x < 5.6.4 process_nested_data() RCE

According to its banner, the version of PHP 5.6.x installed on the remote host is prior to 5.6.4. It is, therefore, affected by a use-after-free error in the 'processnesteddata' function within 'ext/standard/varunserializer.re' due to improper handling of duplicate keys within the serialized...

7.5CVSS7.8AI score0.53166EPSS
Exploits8References4
Tenable Nessus
Tenable Nessus
added 2019/01/09 12:0 a.m.31 views

PHP 5.6.x < 5.6.28 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.28. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in the parseurl function due to returning the incorrect host. An unauthenticated, remote attacker can exploit this to hav...

7.5CVSS9.8AI score0.42401EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2019/01/09 12:0 a.m.84 views

PHP 5.6.x < 5.6.24 Multiple Vulnerabilities (httpoxy)

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.24. It is, therefore, affected by multiple vulnerabilities : - A man-in-the-middle vulnerability exists, known as 'httpoxy', due to a failure to properly resolve namespace conflicts in accordance wi...

9.8CVSS8.8AI score0.50427EPSS
Exploits13References14
Tenable Nessus
Tenable Nessus
added 2019/01/09 12:0 a.m.57 views

PHP 5.6.x < 5.6.2 Multiple Vulnerabilities

According to its banner, the version of PHP 5.6.x installed on the remote host is prior to 5.6.2. It is, therefore, affected by the following vulnerabilities : - A buffer overflow error exists in the function 'mkgmtime' that can allow application crashes or arbitrary code execution. CVE-2014-3668...

7.5CVSS9.2AI score0.28862EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2019/01/09 12:0 a.m.64 views

PHP 5.6.x < 5.6.19 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.19. It is, therefore, affected by multiple vulnerabilities : - A use-after-free error exists in file ext/wddx/wddx.c in the phpwddxpopelement function when handling XML data. An unauthenticated,...

9.8CVSS8.9AI score0.35438EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/01/09 12:0 a.m.34 views

PHP 5.6.x < 5.6.34 Stack Buffer Overflow

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.34. It is, therefore, affected by a stack buffer overflow vulnerability. Note that the scanner has not attempted to exploit this issue but has instead relied only on the application's self-reported...

9.8CVSS10AI score0.87606EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2019/01/09 12:0 a.m.123 views

PHP 5.6.x < 5.6.22 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.22. It is, therefore, affected by multiple vulnerabilities : - An out-of-bounds read error exists in the gdContributionsCalc function within file ext/gd/libgd/gdinterpolation.c. An unauthenticated,...

8.6CVSS8AI score0.05487EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2018/12/19 12:0 a.m.970 views

PHP 5.6.x < 5.6.39 Multiple vulnerabilities

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.39. It is, therefore, affected by multiple vulnerabilities: - An arbitrary command injection vulnerability exists in the imapopen function due to improper filters for mailbox names prior to passing...

8.5CVSS7.6AI score0.9523EPSS
Exploits7References4
0day.today
0day.today
added 2018/10/31 12:0 a.m.51 views

CI User Login and Management 1.0 - Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications Exploit Title: CI User Login and Management 1.0 - Arbitrary File Upload Exploit Author: Ihsan Sencan Vendor Homepage 1: http://www.webprojectbuilder.com/item/user-login-and-management Vendor Homepage 2:...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2018/10/29 12:0 a.m.28 views

Open Faculty Evaluation System 5.6 SQL Injection

Exploit Title: Open Faculty Evaluation System 5.6 - 'batchname' SQL Injection Dork: N/A Date: 2018-10-29 Exploit Author: Ihsan Sencan Vendor Homepage: https://openfacultyeval.sourceforge.io/ Software Link: https://sourceforge.net/projects/openfacultyeval/files/feedbackphp56.zip/download Version:...

0.1AI score
Exploits0
0day.today
0day.today
added 2018/10/16 12:0 a.m.24 views

Vishesh Auto Index 3.1 - fid SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Vishesh Auto Index 3.1 - 'fid' SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: http://www.vishesh.cf/ Software Link: https://sourceforge.net/projects/vishesh-wap-auto-index/files/latest/download Version: 3.1 Category...

0.4AI score
Exploits0
0day.today
0day.today
added 2018/04/26 12:0 a.m.45 views

Frog CMS 0.9.5 - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Frog CMS 0.9.5 has a stored Cross Site Scripting Vulnerability via "Admin Site title" in Settings Exploit Author: Wenming Jiang Vendor Homepage: https://github.com/philippe/FrogCMS Software Link:...

5.2AI score0.01932EPSS
Exploits5
Rows per page
Query Builder