712 matches found
The vulnerability of the phar_get_entry_data function in the PHP programming language allows a attacker to cause a service failure or potentially cause other effects.
The vulnerability of the phargetentrydata function in the PHP language interpreter is related to pointer arithmetic errors. Exploiting this vulnerability could allow an attacker to cause service failures or potentially cause other adverse effects...
The vulnerability of the exif_process_user_comment function (ext/exif/exif.c) in the PHP programming language allows a hacker to cause a service failure.
The vulnerability of the exifprocessusercomment function ext/exif/exif.c in the PHP programming language is related to pointer arithmetic errors. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...
The vulnerability of the http_header_value function (ext/standard/http_fopen_wrapper.c) in the PHP programming language allows a attacker to cause a service failure.
The vulnerability of the httpheadervalue function ext/standard/httpfopenwrapper.c in the PHP programming language is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause service failures remotely...
WordPress VikBooking Hotel Booking Engine & PMS plugin信息泄露漏洞
WordPress and WordPress plugin are products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. WordPress VikBooking Hotel...
The vulnerability of the exif_process_ifd_in_tiff function in the PHP programming language allows attackers to disclose protected information.
The vulnerability of the exifprocessifdintiff function ext/exif/exif.c in the PHP programming language is related to the disclosure of protected information. Exploiting this vulnerability could allow an attacker to disclose protected information remotely...
The vulnerability of the ext/mysqlnd/mysqlnd_wireprotocol.c component of the PHP programming language interpreter allows a attacker to cause a service failure or potentially have other adverse effects.
The vulnerability of the ext/mysqlnd/mysqlndwireprotocol.c component of the PHP programming language interpreter is caused by a buffer overflow. Exploiting this vulnerability could allow an attacker to cause service failures or potentially other adverse effects...
WordPress Nimble Page Builder plugin跨站脚本漏洞
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. WordPress plugin is a WordPress open source application plugin. WordPress Nimble Page Builder plugin version 3.2.2 before the cross-site scripting vulnerability, an attacker can use the vulnerabilit...
The vulnerability of implementing a isolated programming environment for PHP Smarty’s template processors allows attackers to circumvent the restrictions of an isolated programming environment.
The vulnerability of implementing a isolated programming environment for PHP Smarty’s template handlers is related to deficiencies in access control during the processing of the $smarty.templateobject object. Exploiting this vulnerability allows an attacker to circumvent the restrictions of an...
WordPress WP Downgrade plugin跨站脚本漏洞
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. WordPress plugin is a WordPress open source application plugin. WordPress WP Downgrade plugin version before 1.2.3 has a cross-site scripting vulnerability, which can be exploited by attackers to...
WordPress PS PHPCaptcha WP Input Validation Error Vulnerability
WordPress is the WordPress Foundation's suite of blogging platforms developed using the PHP language. The platform supports the hosting of personal blogging sites on servers with PHP and MySQL. An input validation vulnerability exists in the WordPress PS PHPCaptcha WP plugin, which stems from the...
WordPress Limit Login Attempts (Spam Protection) plugin SQL Injection Vulnerability
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports PHP and MySQL servers to set up a personal blog site.WordPress plugin is a WordPress open source application plugin . A SQL injection vulnerability exists in the WordPress Lim...
WordPress Translate WordPress with GTranslate plugin跨站请求伪造漏洞
WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language. WordPress plugin is a WordPress open source application plugin. WordPress Translate WordPress with GTranslate plugin version 2.9.9 is vulnerable to cross-site request forgery. The vulnerability...
Pluck 跨站请求伪造漏洞
Pluck is a content management system CMS developed using the PHP language. A cross-site request forgery vulnerability exists in Pluck CMS version 4.7.15, which stems from The vulnerability stems from a WEB application that does not adequately validate that a request is coming from a trusted user...
WordPress Patreon plugin cross-site scripting vulnerability
WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language. WordPress plugin is an application plugin for WordPress. Cross-site scripting vulnerabilities exist in versions of the WordPress Patreon plugin prior to 1.8.2, which stem from the plugin's failu...
WordPress Team Circle Image Slider With Lightbox plugin跨站脚本漏洞
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blogging sites on PHP and MySQL servers. WordPress plugin is a WordPress open source application plugin. WordPress Team Circle Image Slider With Lightbox...
WordPress Survey Maker plugin跨站脚本漏洞
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. WordPress plugin is a WordPress open source application plugin. WordPress Survey Maker plugin 2.0.6 and previous versions have a cross-site scripting vulnerability, which can be exploited by attacke...
Elite Graphix Elite Cms SQL Injection Vulnerability (CNVD-2022-33824)
Elite Graphix Elite Cms is a web content management written in Php language from Elite Graphix India. platform for storing and organizing information and documents. Elite Graphix Elite Cms suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL...
Elite Graphix Elite Cms SQL注入漏洞
Elite Graphix Elite Cms is a web content management written in Php language from Elite Graphix India. platform for storing and organizing information and documents. Elite Graphix Elite Cms suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL...
CTF-All-In-One
This is a comprehensive guide to CTF Capture The Flag competitions, specifically focusing on the Pwn binary exploitation aspect. The book is written by Yang Cheng, a member of L-Team, and is intended for beginners. It covers the basics of binary exploitation, including memory management, buffer...
WordPress WP Booking System plugin cross-site scripting vulnerability
WordPress is the Wordpress Foundation's suite of blogging platforms developed using the PHP language. The platform supports the hosting of personal blogging sites on servers with PHP and MySQL. WordPress WP Booking System plugin has a cross-site scripting vulnerability in versions prior to 2.0.15...