PHP 5.2.4 htaccess 文件导致safe_mode和open_basedir权限绕过

No description provided by source...

PHP 5.2.125.3.1 - symlink() open_basedir Bypass

PHP 5.2.125.3.1 - symlink openbasedir Bypass This is exploit from Security Audit Lab - SecurityReason labs. Author : Maksymilian Arciemowicz Script for legal use only. PHP 5.2.12 5.3.1 symlink openbasedir bypass More: SecurityReason '; ifempty$file exit; if!iswritable"." die"not writable...

PHP 5.2.12/5.3.1 - 'symlink()' open_basedir Bypass

This is exploit from Security Audit Lab - SecurityReason labs. Author : Maksymilian Arciemowicz Script for legal use only. PHP 5.2.12 5.3.1 symlink openbasedir bypass More: SecurityReason '; ifempty$file exit; if!iswritable"." die"not writable directory"; $level=0; for$as=0;$as$fakedep;$as++...

PHP 5.2.1 哈希表覆盖导致任意代码执行漏洞

No description provided by source...

PHP 5.2.3 safe_mode 存在权限绕过漏洞

No description provided by source...

PHP rfc822_write_address 拒绝服务漏洞

No description provided by source...

PHP magic_quotes_gpc 设计错误导致安全绕过

No description provided by source...

PHP posix_access 函数导致safe_mode被绕过

No description provided by source...

CVE-2009-3559

main/streams/plainwrapper.c in PHP 5.3.x before 5.3.1 does not recognize the safemodeincludedir directive, which allows context-dependent attackers to have an unknown impact by triggering the failure of PHP scripts that perform include or require operations, as demonstrated by a script that...

CVE-2009-3559

main/streams/plainwrapper.c in PHP 5.3.x before 5.3.1 does not recognize the safemodeincludedir directive, which allows context-dependent attackers to have an unknown impact by triggering the failure of PHP scripts that perform include or require operations, as demonstrated by a script that...

CVE-2009-3559

main/streams/plainwrapper.c in PHP 5.3.x before 5.3.1 does not recognize the safemodeincludedir directive, which allows context-dependent attackers to have an unknown impact by triggering the failure of PHP scripts that perform include or require operations, as demonstrated by a script that...

PHP 5.3.0 open_basedir Bypass

Description: ------------ Via this bug , attacker can save a file in path that not allowed in openbasedir . Reproduce code: --------------- / if!isset$PATH,$VALUE die'/expl.php?p=pathuwantsavefile/filename&v=valueuwantsav einfile'; $IRCRASH = pdfnew; pdfopenfile$IRCRASH,$PATH;...

PHP 5.3.0 - pdflib Arbitrary File Write

PHP 5.3.0 - pdflib Arbitrary File Write Description: ------------ Via this bug , attacker can save a file in path that not allowed in openbasedir . Reproduce code: --------------- / if!isset$PATH,$VALUE die'/expl.php?p=pathuwantsavefile/filename&v=valueuwantsav einfile'; $IRCRASH = pdfnew;...

PHP 5.3.0 pdflib file disclosure

Exploit for unknown platform in category web applications ================================ PHP 5.3.0 pdflib file disclosure ================================ Description: ------------ Via this bug , attacker can save a file in path that not allowed in openbasedir . Reproduce code: --------------- ...

SLES9: Security update for PHP

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: php4-gd php4-recode apache2-modphp4 php4-mysql php4-exif php4-pear php4-pgsql php4-devel modphp4-core modphp4-servlet php4-servlet php4-fastcgi php4-session...

SLES9: Security update for PHP

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: php4-gd php4-recode apache2-modphp4 php4-mysql php4-exif php4-pear php4-pgsql php4-devel modphp4-core modphp4-servlet php4-servlet php4-fastcgi php4-session...

PHP 5.3 - 'preg_match()' Full Path Disclosure

MajorSecurity Advisory 57PHP =5.3 - pregmatch full path disclosure Details ======= Product: PHP =5.3 Security-Risk: moderated Remote-Exploit: yes Vendor-URL: http://www.php.net/ Vendor-Status: informed Advisory-Status: published Credits ============ Discovered by: David Vieira-Kurz...

CVE-2009-3292

Unspecified vulnerability in PHP before 5.2.11, and 5.3.x before 5.3.1, has unknown impact and attack vectors related to "missing sanity checks around exif processing."...

PHP 5.2.10及之前版本存在多个安全漏洞

Bugraq ID: 36449 PHP是一款流行的网络编程语言。 PHP存在多个未明安全问题，具体如下： -phpopensslapplyverificationpolicy中存在证书校验问题。 -imagecolortransparent对颜色索引缺少充分过滤检查。 -对exif处理缺少充分的过滤检查。 PHP PHP 5.2.10 PHP PHP 5.2.9 -2 PHP PHP 5.2.9 PHP PHP 5.2.8 PHP PHP 5.2.7 PHP PHP 5.2.6 PHP PHP 5.2.5 PHP PHP 5.2.4 PHP PHP 5.2.3 PHP PHP 5.2....

CVE-2008-7068

The dbareplace function in PHP 5.2.6 and 4.x allows context-dependent attackers to cause a denial of service file truncation via a key with the NULL byte. NOTE: this might only be a vulnerability in limited circumstances in which the attacker can modify or add database entries but does not have...