Fedora Core 3 : php-4.3.10-3.2 (2004-568)

Tue Dec 21 2004 Joe Orton 4.3.10-3.2 - fix umask patch 143286 - Wed Dec 15 2004 Joe Orton 4.3.10-3.1 - update to 4.3.10, including security fixes 141135 : - unserializer integer overflows, CVE-2004-1019 - exif image parsing overflow, CVE-2004-1065 Note that Tenable Network Security has extracted...

phphpbb2 + php version < 4.3.10 unserialize() memory dump sql password from config.php exploit

php bug in ext/standart/varunserializer.c in php 4.3.10 for dump php heap memory with phpbb2 ,who use unserialize for cookie , and found the config.phpsql password in the heap. you need http://overdose.tcpteam.org/serv.h and http://overdose.tcpteam.org/serv.cpp for compile / coded by overdose...

PHP <= 4.3.9 & phpBB 2.x with unserialize() Remote Exploit (compiled)

Exploit for unknown platform in category web applications ===================================================================== PHP tested : phpbbmemorydump.exe "http://site.com/phpbb/" 30000 -cookiename=phpbb2support a.txt result: - string detected : /home/virtual/site.com/phpBB/config.php -...

PHP 4.3.9 + phpBB 2.x - &#039;Unserialize()&#039; Remote Information Leak

// Compiled version: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/697.rar phpbbmemorydump.rar // Source serv.cpp is at the bottom of the page - str0ke // Notes from author: // compile with borland c++ freecommandlinetools : // bcc32 -c serv.cpp // bcc32...

php unserialize

============================================================== SEC-CONSULT Security Advisory PHP - 4.3.9 unserialize function ======================OOOOOOOOOOOO============================ Product: PHP 4.3.9 Win32/Unix Remarks: no other Versions tested but very likely vulnerable Vulnerablities: -...

CVE-2004-0263

PHP 4.3.4 and earlier in Apache 1.x and 2.x modphp can leak global variables between virtual hosts that are handled by the same Apache child process but have different settings, which could allow remote attackers to obtain sensitive information...

phpBB Detection

The remote host is running phpBB, a bulletin-board system written in PHP. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid15779; scriptversion"1.25"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/06/01"; scriptnameenglish:"phpBB Detection";...

phpPOC.txt

PHP File Upload Vulnerability POC Title: Overwrite $FILE array in rfc1867 - Mime multipart/form-data File Upload Author: Stefano Di Paola Affected: Php "; if isuploadedfile$FILES'userfile''tmpname' && moveuploadedfile$FILES'userfile''tmpname', $uploadfile print "File is valid, and was successfull...

PHP rfc1867.c $_FILES Array Crafted MIME Header Arbitrary File Upload

The remote host is running a version of PHP that is older than 4.3.9 or 5.0.2. The remote version of this software is affected by an unspecified file upload vulnerability that could allow a local attacker to upload arbitrary files to the server. This flaw can only be exploited locally...

CVE-2003-0097

Unknown vulnerability in CGI module for PHP 4.3.0 allows attackers to access arbitrary files as the PHP user, and possibly execute PHP code, by bypassing the CGI force redirect settings cgi.forceredirect or --enable-force-cgi-redirect...

CVE-2001-0042

The CVE-2001-0042 entry affects PHP 3.x running on Apache 1.3.6 . It describes a remote file-read vulnerability via a modified “..” path traversal that can include encoded backslash sequences ("%5c") to disclose arbitrary files. The description indicates the root cause is a dot-dot traversal vuln...

CVE-2001-0042

PHP 3.x PHP3 on Apache 1.3.6 allows remote attackers to read arbitrary files via a modified .. dot dot attack containing "%5c" encoded backslash sequences...

PHP 4.x/5.0 - &#039;Strip_Tags()&#039; Function Bypass

source: https://www.securityfocus.com/bid/10724/info It is reported that it is possible to bypass PHPs striptags function. It is reported that under certain circumstances, PHPs striptags function will improperly leave malformed tags in place. This vulnerability may mean that previously...

VisualShapers EZContents 1.x/2.0 - &#039;archivednews.php&#039; Arbitrary File Inclusion

source: https://www.securityfocus.com/bid/9638/info It has been reported that ezContents may be prone to a file include vulnerability in multiple modules. The problem reportedly exists because remote users may influence the 'GLOBALSrootdp' and 'GLOBALSlanguagehome' variables in the 'db.php' and...

VisualShapers EZContents 1.x/2.0 - &#039;db.php&#039; Arbitrary File Inclusion

source: https://www.securityfocus.com/bid/9638/info It has been reported that ezContents may be prone to a file include vulnerability in multiple modules. The problem reportedly exists because remote users may influence the 'GLOBALSrootdp' and 'GLOBALSlanguagehome' variables in the 'db.php' and...

VisualShapers EZContents 1.x2.0 - db.php Arbitrary File Inclusion

VisualShapers EZContents 1.x2.0 - db.php Arbitrary File Inclusion source: https://www.securityfocus.com/bid/9638/info It has been reported that ezContents may be prone to a file include vulnerability in multiple modules. The problem reportedly exists because remote users may influence the...

CVE-2003-0863

The phpchecksafemodeincludedir function in fopenwrappers.c of PHP 4.3.x returns a success value 0 when the safemodeincludedir variable is not specified in configuration, which differs from the previous failure value and may allow remote attackers to exploit file include vulnerabilities in PHP...

php67.txt

Informations : °°°°°°°°°°°°° Language : PHP Version : 6.7 Website : http://www.phpnuke.org Problem : File Upload PHP Code/Location : °°°°°°°°°°°°°°°°°°° modules/WebMail/mailattach.php :...

guppy24.txt

Informations : °°°°°°°°°°°°° Language : PHP Bugged Version : 2.4p3 and less ? Patched version : 2.4p4 Website : http://www.freeguppy.org Problems : - Permanent XSS - Files Reading - Files Writing PHP Code/Location : °°°°°°°°°°°°°°°°°°° postguest.php :...

myPHPNuke : Copy/Upload/Include Files

Informations : °°°°°°°°°°°°° Language : PHP Version : 1.8.87 Website : http://www.myphpnuke.com Problems : - Upload/Copy/Include Files PHP Code/Location : °°°°°°°°°°°°°°°°°°° gallery/displayCategory.php : ------------------------------------------ ... ?php include "$basepath/imageFunctions.php";...