myPHPNuke : Copy/Upload/Include Files

Informations : °°°°°°°°°°°°° Language : PHP Version : 1.8.87 Website : http://www.myphpnuke.com Problems : - Upload/Copy/Include Files PHP Code/Location : °°°°°°°°°°°°°°°°°°° gallery/displayCategory.php : ------------------------------------------ ... ?php include "$basepath/imageFunctions.php";...

CVE-2003-0442

Cross-site scripting XSS vulnerability in the transparent SID support capability for PHP before 4.3.2 session.usetranssid allows remote attackers to insert arbitrary script via the PHPSESSID parameter...

WebChat (PHP)

Informations : °°°°°°°°°°°°°° Version : 0.77 Website : http://www.webdev.ro Problem : File Including PHP Code/Location : °°°°°°°°°°°°°°°°°°° defines.php : ----------------------------------------------- ? if !isset$WEBCHATPATH $WEBCHATPATH = './'; include $WEBCHATPATH.'dbmysql.php'; include...

PHP Security Advisory: CGI vulnerability in PHP version 4.3.0

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 PHP Security Advisory: CGI vulnerability in PHP version 4.3.0 Issued on: February 17, 2003 Software: PHP/CGI version 4.3.0 Platforms: All The PHP Group has learned of a serious security vulnerability in the CGI SAPI of PHP version 4.3.0. Description P...

DCP-Portal (PHP)

Informations : °°°°°°°°°°°°°° Version : 5.0.1 Website : http://www.dcp-portal.org Problems : - Include file - Access to users' accounts - Access to the administration PHP Code/ Location : °°°°°°°°°°°°°°°°°°°° The first & second hole will work if registerglobals is ON. /library/editor/editor.php :...

Thatware (PHP)

Informations : °°°°°°°°°°°°°° Versions : ? - 0.3 - 0.5.3 Website : http://www.thatware.org Problems : - Include file - SQL Injection PHP Code/Location : °°°°°°°°°°°°°°°°°°° artlist.php v0.5.2, 0.5.3 : ------------------------------------- include $rootpath.'thatfile.php';...

iDEFENSE Security Advisory 11.04.02b: Denial of Service Vulnerability in Xeneo Web Server

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 11.04.02b: http://www.idefense.com/advisory/11.04.02b.txt Denial of Service Vulnerability in Xeneo Web Server November 4, 2002 I. BACKGROUND Northern Solutions' Xeneo Web Server is a "fast, compact web server that makes it...

CVE-2001-1246

PHP 4.0.5 through 4.1.0 in safe mode does not properly cleanse the 5th parameter to the mail function, which allows local users and possibly remote attackers to execute arbitrary commands via shell metacharacters...

php breaks safe mode

Laberatoire Contempt Date : 12/06/2001 Author : Joost Pol alias 'Nohican' [email protected] Impact : Minor in most cases. Subject : PHP safemode troubles. 1. PHP Version 4.0.5 breaks safe-mode. 1.0 - Description of the problem An extra 5th parameter was added to the mail command breaking safemode...

PT-2001-2378 · Php · Php

Name of the Vulnerable Software and Affected Versions: PHP versions 4.0.5 through 4.1.0 Description: The issue is related to the mail function in PHP, where the 5th parameter is not properly cleansed in safe mode, allowing local users and possibly remote attackers to execute arbitrary commands vi...

PHP < 4.0.4 IMAP Module imap_open() Function Overflow

A version of PHP that is older than 4.0.4 is installed on this host. There is a buffer overflow condition in the IMAP module of this version that could allow an attacker to execute arbitrary commands with the privileges of the web server, if this server is serving a webmail interface. %NASLMINLEV...

CVE-2000-0967

PHP 3 and 4 do not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands by triggering error messages that are improperly written to the error logs...

PHP 3.0.16/4.0.2 Remote Format Overflow Exploit

Exploit for linux platform in category remote exploits =============================================== PHP 3.0.16/4.0.2 Remote Format Overflow Exploit =============================================== / PHP 3.0.16/4.0.2 remote format overflow exploit. Copyright c 2000 Field Marshal Count August Ant...

PHP 3.0.16/4.0.2 - Remote Format Overflow

/ PHP 3.0.16/4.0.2 remote format overflow exploit. Copyright c 2000 Field Marshal Count August Anton Wilhelm Neithardt von Gneisenau [email protected] my regards to sheib and darkx All rights reserved Pascal Boucheraine's paper was enlightening THERE IS NO IMPLIED OR EXPRESS WARRANTY FOR THIS...

PHP File Upload Capability Hidden Form Field Modification Arbitrary File Access

A version of PHP that is older than 3.0.17 or 4.0.3 is running on this host. If a PHP service that allows users to upload files and then display their content is running on this host, an attacker may be able to read arbitrary files from the server. %NASLMINLEVEL 70300 C Tenable Network Security,...

PHP 3.0.13 - Safe_mode Failure

PHP 3.0.13 - Safemode Failure source: https://www.securityfocus.com/bid/911/info PHP Version 3.0 is an HTML-embedded scripting language. Much of its syntax is borrowed from C, Java and Perl with a couple of unique PHP-specific features thrown in. The goal of the language is to allow web developer...

PHP 3.0.13 - &#039;Safe_mode&#039; Failure

source: https://www.securityfocus.com/bid/911/info PHP Version 3.0 is an HTML-embedded scripting language. Much of its syntax is borrowed from C, Java and Perl with a couple of unique PHP-specific features thrown in. The goal of the language is to allow web developers to write dynamically generat...