Mandrake Security Advisory MDVSA-2009:145 (php)

The remote host is missing an update to php announced via advisory MDVSA-2009:145. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-on...

Fedora Update for php FEDORA-2007-261

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora 8 : php-5.2.6-2.fc8 (2008-3864)

This release updates PHP to the latest upstream version 5.2.6, fixing multiple bugs and security issues. See upstream release notes for further details: http://www.php.net/releases/525.php http://www.php.net/releases/526.php It was discovered that the PHP escapeshellcmd function did not properly...

Fedora 9 : php-5.2.6-2.fc9 (2008-3606)

This release updates PHP to the latest upstream version 5.2.6, fixing multiple bugs and security issues. See upstream release notes for further details: http://www.php.net/releases/526.php It was discovered that the PHP escapeshellcmd function did not properly escape multi-byte characters which a...

[slackware-security] php

New php packages are available for Slackware 10.2, 11.0, and -current to improve the stability and security of PHP. Quite a few bugs were fixed -- please see http://www.php.net for a detailed list. All sites that use PHP are encouraged to upgrade. Please note that we haven't tested all PHP...

CVE-2006-6878

admin/uploads.php in PHP-Update 2.7 and earlier allows remote attackers to gain privileges by setting the rights7 parameter to 1 during a login action...

CVE-2006-6878

CVE-2006-6878 affects admin/uploads.php in PHP-Update 2.7 and earlier. The underlying issue lets remote attackers gain privileges by setting the rights[7] parameter to 1 during a login action. This describes a server-side privilege escalation during authentication, with no further exploit details...

CVE-2006-6879

Unrestricted file upload vulnerability in admin/uploads.php in PHP-Update 2.7 and earlier allows remote authenticated users to upload arbitrary PHP scripts to the gfx/ and files/ directories via the userfile parameter...

CVE-2006-6879

Unrestricted file upload vulnerability CVE-2006-6879 affects PHP-Update 2.7 and earlier. Authenticated users can upload arbitrary PHP scripts via the userfile parameter to gfx/ and files/ directories through admin/uploads.php. The NVD notes a base AV:N/AC:M/Au:S/C:P/I:P/A:P with a medium base sco...

CVE-2006-6879

Unrestricted file upload vulnerability in admin/uploads.php in PHP-Update 2.7 and earlier allows remote authenticated users to upload arbitrary PHP scripts to the gfx/ and files/ directories via the userfile parameter...

CVE-2006-6878

admin/uploads.php in PHP-Update 2.7 and earlier allows remote attackers to gain privileges by setting the rights7 parameter to 1 during a login action...

CVE-2006-6880

Multiple SQL injection vulnerabilities in code/guestadd.php in PHP-Update 2.7 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 newmessage, 2 newname, 3 newwebsite, or 4 newemail parameter...

PHP-Update <= 2.7 (admin/uploads.php) Remote Code Execution Exploit

No description provided by source. !/usr/bin/perl rgod u fucking little piece of shit faggot. way to ruin a private exploit, scumbag use strict; use IO::Socket; use MIME::Base64; use Getopt::Std; my $app = "PHP-Update 2.7"; my $type = "Remote Code Execution"; my $author = "undefined1"; my $date =...

PHP-Update <= 2.7 Multiple Remote Vulnerabilities Exploit

No description provided by source. ?php printr' --------------------------------------------------------------------------- PHP-Update = 2.7 strreplace sql injection / privilege escalation / / cmd exec ii by rgod dork: "Powered by PHP-Update" -site:www.php-update.co.uk -ihackstuff -exploit mail:...

PHP-Update 2.7 - Multiple Vulnerabilities

PHP-Update 2.7 - Multiple Vulnerabilities = 4.1 allowing subs / if $argc 126 $result.=" ."; else $result.=" ".$string$i; if strlend...

PHP-Update 2.7 - Multiple Vulnerabilities

= 4.1 allowing subs / if $argc 126 $result.=" ."; else $result.=" ".$string$i; if...

PHP-Update 2.7 - adminuploads.php Remote Code Execution

PHP-Update 2.7 - adminuploads.php Remote Code Execution !/usr/bin/perl rgod u fucking little piece of shit faggot. way to ruin a private exploit, scumbag use strict; use IO::Socket; use MIME::Base64; use Getopt::Std; my $app = "PHP-Update 2.7"; my $type = "Remote Code Execution"; my $author =...

PHP-Update <= 2.7 Multiple Remote Vulnerabilities Exploit

Exploit for unknown platform in category web applications ========================================================= PHP-Update = 4.1 allowing subs / if $argc3 printr' --------------------------------------------------------------------------- Usage: php '.$argv0.' host path cmd OPTIONS host: targ...

PHP-Update <= 2.7 (admin/uploads.php) Remote Code Execution Exploit

Exploit for unknown platform in category web applications =================================================================== PHP-Update = 2.7 admin/uploads.php Remote Code Execution Exploit =================================================================== !/usr/bin/perl rgod u fucking little...

PHP-Update 2.7 - &#039;/admin/uploads.php&#039; Remote Code Execution

!/usr/bin/perl rgod u fucking little piece of shit faggot. way to ruin a private exploit, scumbag use strict; use IO::Socket; use MIME::Base64; use Getopt::Std; my $app = "PHP-Update 2.7"; my $type = "Remote Code Execution"; my $author = "undefined1"; my $date = "2006-10-21"; my $settings = "none...