Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Github Security Blog
Github Security Blogadded 2022/05/17 3:55 a.m.28 views

Drupal arbitrary code execution

Drupal 6.x before 6.38, when used with PHP before 5.4.45, 5.5.x before 5.5.29, or 5.6.x before 5.6.13, might allow remote attackers to execute arbitrary code via vectors related to session data truncation...

8.1CVSS7.9AI score0.08219EPSS
Exploits0References8Affected Software2
exploitpack
exploitpackadded 2018/07/23 12:0 a.m.15 views

NUUO NVRmini - upgrade_handle.php Remote Command Execution

NUUO NVRmini - upgradehandle.php Remote Command Execution Exploit Title: NUUO NVR Unauthenticated Remote Code Execution Exploit Author: Berk Dusunur Google Dork: N/A Date: 2018-07-21 Vendor Homepage: http://www.nuuo.com/ Software Link: http://www.nuuo.com/ Affected Version: v2016 Tested on: Parro...

0.2AI score
Exploits0
OpenVAS
OpenVASadded 2016/03/01 12:0 a.m.79 views

PHP < 5.4.45, 5.5.x < 5.5.29, 5.6.x < 5.6.13 RCE Vulnerability (Mar 2016) - Linux

PHP is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if descripti...

7.5CVSS8.9AI score0.03428EPSS
Exploits0References3
0day.today
0day.todayadded 2015/10/05 12:0 a.m.18 views

PHP 5.6.13 phar_get_fp_offset() Null pointer dereference Vulnerability

Exploit for php platform in category local exploits Description: ------------ If a Tar entry has the Link indicator set and points to an nonexisting file, phargetlinksource returns a NULL value phar/util.c:69: if SUCCESS == zendhashfind&entry-phar-manifest, entry-link, strlenentry-link, void...

6.8AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2015/09/21 12:0 a.m.68 views

Fedora 23 : php-5.6.13-1.fc23 (2015-14978)

03 Sep 2015, PHP 5.6.13 Core: Fixed bug 69900 Too long timeout on pipes. Anatol Fixed bug 69487 SAPI may truncate POST data. cmb Fixed bug 70198 Checking liveness does not work as expected. Shafreeck Sea, Anatol Belski Fixed bug 70172 Use After Free Vulnerability in unserialize. Stas Fixed bug...

9.8CVSS8AI score0.35455EPSS
Exploits7References18
Tenable Nessus
Tenable Nessusadded 2015/09/15 12:0 a.m.56 views

Fedora 22 : php-5.6.13-1.fc22 (2015-14977)

03 Sep 2015, PHP 5.6.13 Core: Fixed bug 69900 Too long timeout on pipes. Anatol Fixed bug 69487 SAPI may truncate POST data. cmb Fixed bug 70198 Checking liveness does not work as expected. Shafreeck Sea, Anatol Belski Fixed bug 70172 Use After Free Vulnerability in unserialize. Stas Fixed bug...

9.8CVSS8AI score0.35455EPSS
Exploits7References18
Tenable Nessus
Tenable Nessusadded 2015/09/15 12:0 a.m.74 views

Fedora 21 : php-5.6.13-1.fc21 (2015-14976)

03 Sep 2015, PHP 5.6.13 Core: Fixed bug 69900 Too long timeout on pipes. Anatol Fixed bug 69487 SAPI may truncate POST data. cmb Fixed bug 70198 Checking liveness does not work as expected. Shafreeck Sea, Anatol Belski Fixed bug 70172 Use After Free Vulnerability in unserialize. Stas Fixed bug...

9.8CVSS8AI score0.35455EPSS
Exploits7References18
Rows per page
Query Builder