737 matches found
PHP < 5.3.26 / 5.4.x < 5.4.16 Heap Based Buffer Overflow
Binary data 6866.prm...
PHP 5.4.x < 5.4.16 Multiple Vulnerabilities
According to its banner, the version of PHP 5.4.x installed on the remote host is prior to 5.4.16. It is, therefore, potentially affected by the following vulnerabilities: - An error exists in the mimetype detection of 'mp3' files that could lead to a denial of service. Bug 64830 - An error exist...
PHP 5.3.x < 5.3.23 Multiple Vulnerabilities
According to its banner, the version of PHP 5.3.x installed on the remote host is prior to 5.3.23. It is, therefore, potentially affected by multiple vulnerabilities: - An error exists in the file 'ext/soap/soap.c' related to the 'soap.wsdlcachedir' configuration directive and writing cache files...
PHP 5.4.x < 5.4.13 Information Disclosure
According to its banner, the version of PHP 5.4.x installed on the remote host is prior to 5.4.13. It is, therefore, potentially affected by an information disclosure vulnerability. The 5.4.12 fix for CVE-2013-1635 / CVE-2013-1643 was incomplete and an error still exists in the files...
phpMyAdmin preg_replace from_prefix sanitization vulnerability
Added: 05/20/2013 CVE: CVE-2013-3238 BID: 59460 OSVDB: 92793 Background phpMyAdmin is a free software tool, written in PHP, designed to handle the administration of MySQL over the Web. Problem phpMyAdmin before 3.5.8.1 is vulnerable to code injection as a result of failure to sanitize input passe...
phpMyAdmin Authenticated Remote Code Execution Vulnerability
This Metasploit module exploits a PREGREPLACEEVAL vulnerability in phpMyAdmin's replaceprefixtbl within libraries/multsubmits.inc.php via dbsettings.php. This affects versions 3.5.x below 3.5.8.1 and 4.0.0 below 4.0.0-rc3. PHP versions greater than 5.4.6 are not vulnerable. This file is part of t...
PHP 'phar/tar.c' Heap Buffer Overflow Vulnerability - Windows
PHP is prone to a heap buffer overflow vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...
PHP 5.4.x < 5.4.12 Information Disclosure
According to its banner, the version of PHP 5.4.x installed on the remote host is prior to 5.4.12. It is, therefore, potentially affected by an information disclosure in the file 'ext/soap/phpxml.c' related to parsing SOAP 'wsdl' files and external entities that could cause PHP to parse remote XM...
Information disclosure - ownCloud
Due to the inclusion of the Amazon SDK testing suite an unauthenticated attacker is able to gain additional informations about the server including: the PHP version the cURL version informations wether the following functions/modules are available: SimpleXML DOM SPL JSON PCRE File System Read/Wri...
Server: Information disclosure
Due to the inclusion of the Amazon SDK testing suite an unauthenticated attacker is able to gain additional informations about the server including: the PHP version the cURL version informations wether the following functions/modules are available: SimpleXML DOM SPL JSON PCRE File System Read/Wri...
PHP 'openssl_encrypt()' Function Information Disclosure Vulnerability - Windows
PHP is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...
PHP 5.4.x < 5.4.11 cURL X.509 Certificate Domain Name Matching MiTM Weakness
Binary data 801107.prm...
WordPress 3.4.2 Cross Site Request Forgery
Exploit for php platform in category web applications ============================================================ Vulnerable Software: WordPress Version 3.4.2 Downloaded from: http://wordpress.org/latest.zip MD5SUM: d670508d81e2fd060c2041441bc03300 wordpress-3.4.2.zip...
WordPress 3.4.2 Cross Site Request Forgery
============================================================ Vulnerable Software: WordPress Version 3.4.2 Downloaded from: http://wordpress.org/latest.zip MD5SUM: d670508d81e2fd060c2041441bc03300 wordpress-3.4.2.zip =========================================================== Tested: php.ini...
Mandrake Linux Security Advisory : mod_php3 (MDKSA-2000:062)
PHP version 3 which ships with Linux-Mandrake are vulnerable to format string attacks due to logging functions that make improper use of the syslog and vsnprintf functions. This renders PHP3-enabled servers vulnerable to compromise by remote attackers. This attack is only effective on PHP...
TikiWiki unserialize() Function Arbitrary Code Execution
The version of the TikiWiki installed on the remote host contains a flaw that could allow a remote attacker to execute arbitrary code. The 'unserialize' function is not properly sanitized before being used in the 'lib/banners/bannerlib.php', 'tiki-printmultipages.php', 'tiki-sendobjects.php' and...
PHP < 5.3.14, 5.4.x < 5.4.4 DoS Vulnerability - Windows
PHP is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...
Tiki Wiki unserialize() PHP Code Execution
This module exploits a php unserialize vulnerability in Tiki Wiki 'Tiki Wiki unserialize PHP Code Execution', 'Description' = %q This module exploits a php unserialize vulnerability in Tiki Wiki = 8.3 which could be abused to allow unauthenticated users to...
PHP 5.3.x < 5.3.13 CGI Query String Code Execution
Binary data 801100.prm...
b2ePMS 1.0 SQL Injection
Title: b2ePMS 1.0 multiple SQLi Vulnerabilities Version: 1.0 Author/Found by: loneferret Manifacturer/Software link: https://developer.berlios.de/projects/b2epms/ Other vulnerability: http://www.exploit-db.com/exploits/18882/ Date found: May 27th 2012 Tested on: Ubuntu Server 8.04 / PHP Version...