534 matches found
PT-2015-1022 · Php +5 · Php +5
Name of the Vulnerable Software and Affected Versions: PHP versions prior to 5.5.22 PHP versions 5.6.x prior to 5.6.6 Description: The issue is related to a use-after-free vulnerability in the phar rename archive function. This vulnerability can be exploited by remote attackers to cause a denial ...
PHP DateTime Use-After-Free
Use After Free Vulnerability in unserialize with DateTime CVE-2015-0273 Taoguang Chen - Write Date: 2015.1.29 - Release Date: 2015.2.20 A use-after-free vulnerability was discovered in unserialize with DateTime/DateTimeZone/DateInterval/DatePeriod objects's wakeup magic method that can be abused...
PT-2014-1946 · Php +6 · Php +6
Name of the Vulnerable Software and Affected Versions: GD versions 2.1.1 and earlier PHP versions prior to 5.5.21 PHP versions 5.6.x prior to 5.6.5 Description: The issue allows remote attackers to cause a denial of service, resulting in a buffer over-read and application crash, via a crafted GIF...
UBUNTU-CVE-2014-3668
Buffer overflow in the datefromISO8601 function in the mkgmtime implementation in libxmlrpc/xmlrpc.c in the XMLRPC extension in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 allows remote attackers to cause a denial of service application crash via 1 a crafted first argument to t...
CVE-2014-3478
Buffer overflow in the mconvert function in softmagic.c in file before 5.19, as used in the Fileinfo component in PHP before 5.4.30 and 5.5.x before 5.5.14, allows remote attackers to cause a denial of service application crash via a crafted Pascal string in a FILEPSTRING conversion...
UBUNTU-CVE-2014-3480
The cdfcountchain function in cdf.c in file before 5.19, as used in the Fileinfo component in PHP before 5.4.30 and 5.5.x before 5.5.14, does not properly validate sector-count data, which allows remote attackers to cause a denial of service application crash via a crafted CDF file...
PT-2014-1415
Name of the Vulnerable Software and Affected Versions file versions prior to 5.19 PHP versions prior to 5.4.30 PHP versions 5.5.x prior to 5.5.14 Description The issue is related to a buffer overflow in the mconvert function in softmagic.c in the file component, which is used in PHP. This allows...
PT-2014-1424 · Php +7 · Php +7
Name of the Vulnerable Software and Affected Versions: File versions prior to 5.19 PHP versions prior to 5.4.30 PHP versions 5.5.x prior to 5.5.14 Description: The issue is related to the cdf read property info function, which does not properly validate a stream offset. This allows remote attacke...
php: Integer overflow leading to heap-buffer overflow in the Phar extension
Integer overflow in the pharparsetarfile function in tar.c in the phar extension in PHP before 5.3.14 and 5.4.x before 5.4.4 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted tar file that triggers a heap-based buffer overflow...
php: $_FILES array indexes corruption
The file-upload implementation in rfc1867.c in PHP before 5.4.0 does not properly handle invalid open square bracket characters in name values, which makes it easier for remote attackers to cause a denial of service malformed $FILES indexes or conduct directory traversal attacks during multi-file...
PT-2012-1222 · Php +3 · Php +3
Name of the Vulnerable Software and Affected Versions: PHP versions prior to 5.3.14 PHP versions 5.4.x prior to 5.4.4 Description: The issue is related to errors in number processing in the PHP language interpreter extension. It may allow a remote attacker to execute arbitrary code or cause a...
PHP 5.3.x < 5.4.3 Multiple Vulnerabilities
Binary data 801071.prm...
SMF 2.0.1 - SQL Injection / Privilege Escalation
!/usr/bin/python -- coding: iso-8859-15 -- Exploit Title: Smf = 2.0.1 Sql injection Vulnerability Author: The:Paradox Disclosure date: 06/12/2011 Software Link: http://download.simplemachines.org/ , http://www.php.net/releases/ Smf = 2.0.1 Sql injection Vulnerability - Priviledge escalation explo...
php: hang on numeric value 2.2250738585072011e-308 with x87 fpu
strtod.c, as used in the zendstrtod function in PHP 5.2 before 5.2.17 and 5.3 before 5.3.5, and other products, allows context-dependent attackers to cause a denial of service infinite loop via a certain floating-point value in scientific notation, which is not properly handled in x87 FPU...
php: information leak vulnerability in var_export()
The varexport function in PHP 5.2 before 5.2.14 and 5.3 before 5.3.3 flushes the output buffer to the user when certain fatal errors occur, even if displayerrors is off, which allows remote attackers to obtain sensitive information by causing the application to exceed limits for memory, execution...
PHP < 5.2.14 / 5.3.x < 5.3.3 Multiple Vulnerabilities
Binary data 5616.prm...
WordPress Plugin Cimy Counter - Full Path Disclosure Redirector Cross-Site Scripting HTTP Response Spitting
WordPress Plugin Cimy Counter - Full Path Disclosure Redirector Cross-Site Scripting HTTP Response Spitting ---------------------------- Advisory: Vulnerabilities in Cimy Counter for WordPress ----------------------------- URL: http://sebug.net/exploit/19862/ ----------------------------- Affecte...
PT-2009-5607 · Php +1 · Php +1
Name of the Vulnerable Software and Affected Versions: PHP versions prior to 5.2.11 PHP versions 5.3.x prior to 5.3.1 Description: The issue allows context-dependent attackers to cause a denial of service crash via a crafted 1 "e" or 2 "er" string in the second argument aka mode of the popen API...
PHP Security Bypass and File Writing Vulnerabilities (Dec 2008)
PHP is prone to a security bypass and a file writing vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php";...
PHP 'chdir()' and 'ftok()' 安全模式绕过漏洞
PHP' safemode‘设置的限制绕过漏洞。成功的攻击可能允许攻击者以确定存在的档案在未经批准的地点;其他攻击也是可能的。 开发这些问题可以让攻击者获得敏感的数据,可用于在其他的攻击。 这些弱点将是一个问题的共同主办的配置在多个用户可以创建并执行任意PHP脚本代码;在这种情况下, ' safemode设置'的限制, PHP的5.2.6是受影响的;其他版本也可能受到影响。 Slackware Linux 12.1 Slackware Linux 12.0 Slackware Linux -current PHP PHP 5.2.6 PHP PHP 5.2.5 PHP PHP 5.2.4...