CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2006-4420

Malware in sbrugna...

7.5CVSS6.4AI score0.01415EPSS

Exploits0References8

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2006-4419

Malware in sbrugna...

7.5CVSS6.4AI score0.04556EPSS

Exploits0References11

Cvelist•added 2006/08/29 12:0 a.m.•23 views

CVE-2006-4433

PHP before 4.4.3 and 5.x before 5.1.4 does not limit the character set of the session identifier PHPSESSID for third party session handlers, which might make it easier for remote attackers to exploit other vulnerabilities by inserting PHP code into the PHPSESSID, which is stored in the session...

6.7AI score0.02825EPSS

Exploits0References7

CVE•added 2006/08/29 12:0 a.m.•39 views

CVE-2006-4432

The CVE-2006-4432 entry describes a directory traversal in Zend Platform 2.2.1 and earlier. An attacker can overwrite arbitrary files by supplying a .. in the final PHPSESSID component, enabling potential direct static code injection in some cases. The affected product is Zend Platform (versions ...

7.5CVSS7.8AI score0.01415EPSS

Exploits0References7Affected Software1

CVE•added 2006/08/29 12:0 a.m.•38 views

CVE-2006-4431

CVE-2006-4431 affects Zend Platform (Session Clustering Daemon) and the mod_cluster module; versions 2.2.1 and earlier are vulnerable. The issue is multiple buffer overflows triggered by a PHPSESSID that is empty or crafted, allowing remote attackers to crash the service (DoS) or potentially exec...

7.5CVSS8AI score0.04556EPSS

Exploits0References10Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by