WordPress Social Photo Gallery Remote Code Execution Vulnerability

WordPress is a suite of blogging platforms from the WordPress Foundation developed using the PHP language.Social Photo Gallery is the ultimate lightbox plugin for WordPress. A remote code execution vulnerability exists in WordPress Social Photo Gallery, which can be exploited by an attacker to...

Code execution vulnerability in SeaCMS backend (CNVD-2019-45348)

SeaCMS is a station building system based on PHP+MYSQL architecture and supports cross-platform operation. A code execution vulnerability exists in the background of SeaCMS, which can be exploited by attackers to execute malicious code...

php: memcpy with negative length via crafted DNS response

An issue was discovered in PHP 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.2. dnsgetrecord misparses a DNS response, which can allow a hostile DNS server to cause PHP to misuse memcpy, leading to read operations going past the buffer allocated for DNS data. This affects phpparser...

USN-4166-2 php5 vulnerability

USN-4166-1 fixed a vulnerability in PHP. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that PHP incorrectly handled certain paths when being used in FastCGI configurations. A remote attacker could possibly use...

UBUNTU-CVE-2019-11043

In PHP versions 7.1.x below 7.1.33, 7.2.x below 7.2.24 and 7.3.x below 7.3.11 in certain configurations of FPM setup it is possible to cause FPM module to write past allocated buffers into the space reserved for FCGI protocol data, thus opening the possibility of remote code execution...

Code execution vulnerability in rgcms

RuiGu information management system RGCMS is a set of open source station management system , using PHP language , the system features free , extended , extremely fast security , free and open source. rgcms there are code execution vulnerabilities , attackers can exploit vulnerabilities to obtain...

Command Execution Vulnerability in CMS Co***.php File

Xunrui CMS content management framework is based on PHP7 language using the latest CodeIgniter4 as a development framework for the production of web content management framework, providing "computer site + mobile site + APP interface" integrated web technology solutions. A command execution...

php: Out-of-bound read in timelib_meridian()

In PHP before 5.6.32, 7.x before 7.0.25, and 7.1.x before 7.1.11, an error in the date extension's timelibmeridian handling of 'front of' and 'back of' directives could be used by attackers able to supply date strings to leak information from the interpreter, related to ext/date/lib/parsedate.c...

php: Stack-based buffer under-read in php_stream_url_wrap_http_ex() in http_fopen_wrapper.c when parsing HTTP response

In PHP through 5.6.33, 7.0.x before 7.0.28, 7.1.x through 7.1.14, and 7.2.x through 7.2.2, there is a stack-based buffer under-read while parsing an HTTP response in the phpstreamurlwraphttpex function in ext/standard/httpfopenwrapper.c. This subsequently results in copying a large string...

php: Out-of-bounds read in base64_decode_xmlrpc in ext/xmlrpc/libxmlrpc/base64.c

An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. xmlrpcdecode can allow a hostile XMLRPC server to cause PHP to read memory outside of allocated areas in base64decodexmlrpc in ext/xmlrpc/libxmlrpc/base64.c...

php: Heap buffer overflow in function exif_process_IFD_TAG()

When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.28, 7.2.x below 7.2.17 and 7.3.x below 7.3.4 can be caused to read past allocated buffer in exifprocessIFDTAG function. This may lead to information disclosure or crash...

Fedora Update for php FEDORA-2019-f07db8f031

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

UBUNTU-CVE-2017-7189

main/streams/xpsocket.c in PHP 7.x before 2017-03-07 misparses fsockopen calls, such as by interpreting fsockopen'127.0.0.1:80', 443 as if the address/port were 127.0.0.1:80:443, which is later truncated to 127.0.0.1:80. This behavior has a security risk if the explicitly provided port number i.e...

Serendipity Code Injection Vulnerability

Serendipity is a PHP-based blogging system from the Serendipity team. The system supports the creation of online journals, blogs, web pages and more. A code injection vulnerability exists in the 'serendipitymoveMediaDirectory' function in Serendipity version 2.0.3. The vulnerability stems from a...

WordPress PHPL Plugin Open Open Redirect Vulnerability

WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. An open open redirect vulnerability exists in the WordPress PHPL plugin. An attacker can exploit the vulnerability to...

ProjectSend CVS Injection Vulnerability

rojectSend formerly known as cFTP is a suite of self-hosted applications based on PHP and MySQL. A CVS injection vulnerability exists in versions prior to ProjectSend r1053 that affects victims who import data into Microsoft Excel...

A vulnerability in the PHP programming language interpreter, related to reading beyond the buffer boundaries of dynamic memory, allows attackers to cause service failures, violate confidentiality, and compromise the integrity of protected data.

The vulnerability in the PHP programming language interpreter relates to reading beyond the buffer boundaries during the processing of regular expressions. Exploiting this vulnerability can allow a malicious actor to cause service failures, violate the confidentiality and integrity of protected...

The vulnerability of the xmlrpc_decode() function, a part of the XMLRPC interpreter for the PHP programming language, relates to the reading of data beyond the buffer memory boundary, allowing attackers to gain access to confidential data.

The vulnerability of the xmlrpcDecode function in the PHP programming language is related to an error that causes memory access beyond the allocated range. Exploiting this vulnerability can allow a remote attacker to gain access to confidential data...

The vulnerability of the “read” function in PHP’s DNS_get_record interpreter, related to reading data beyond the boundaries of the memory buffer, allows attackers to access confidential data.

The vulnerability of the “read” function in the PHP language interpreter’s dnsgetrecord function relates to reading data beyond the boundaries of the allocated memory buffer. Exploiting this vulnerability could allow an attacker to gain access to confidential data during the processing of DNS...

UBUNTU-CVE-2019-9675

An issue was discovered in PHP 7.x before 7.1.27 and 7.3.x before 7.3.3. phartarwriteheadersint in ext/phar/tar.c has a buffer overflow via a long link value. NOTE: The vendor indicates that the link value is used only when an archive contains a symlink, which currently cannot happen: "This issue...