Mandrake Security Advisory MDVSA-2009:145 (php)

The remote host is missing an update to php announced via advisory MDVSA-2009:145. OpenVAS Vulnerability Test $Id: mdksa2009145.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:145 php Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

Mandrake Security Advisory MDVSA-2009:145 (php)

The remote host is missing an update to php announced via advisory MDVSA-2009:145. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-on...

Mandrake Security Advisory MDVSA-2009:090 (php)

The remote host is missing an update to php announced via advisory MDVSA-2009:090. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-on...

PHP 5.2.5 - cURL safe_mode Security Bypass

PHP 5.2.5 - cURL safemode Security Bypass source: https://www.securityfocus.com/bid/27413/info PHP cURL is prone to a 'safe mode' security-bypass vulnerability. Attackers can use this issue to gain access to restricted files, potentially obtaining sensitive information that may aid in further...

SurgeMail v.38k4 webmail Host header Denial of Service Exploit

Exploit for unknown platform in category dos / poc ============================================================== SurgeMail v.38k4 webmail Host header Denial of Service Exploit ============================================================== 0day.today 2018-04-11...

more.groupware 0.74 - 'new_calendarid' SQL Injection

? errorreportingEERROR; function exploitinit if !extensionloaded'phpcurl' && !extensionloaded'curl' if !dl'curl.so' && !dl'phpcurl.dll' die "oo error - cannot load curl extension!"; function exploitheader echo "\noooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo";...

DZCP (deV!L`z Clanportal) 1.34 - 'id' SQL Injection

? errorreportingEERROR; function exploitinit if !extensionloaded'phpcurl' && !extensionloaded'curl' if !dl'curl.so' && !dl'phpcurl.dll' die "oo error - cannot load curl extension!"; function exploitheader echo "\noooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo";...

FreeWPS 2.11 - 'images.php' Remote Code Execution

? errorreportingEERROR; function exploitinit if !extensionloaded'phpcurl' && !extensionloaded'curl' if !dl'curl.so' && !dl'phpcurl.dll' die "oo error - cannot load curl extension!"; function exploitheader echo "\noooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo";...

FreeWPS <= 2.11 (images.php) Remote Code Execution Exploit

No description provided by source. ? errorreportingEERROR; function exploitinit if !extensionloaded'phpcurl' && !extensionloaded'curl' if !dl'curl.so' && !dl'phpcurl.dll' die "oo error - cannot load curl extension!"; function exploitheader echo...

FreeWPS 2.11 - images.php Remote Code Execution

FreeWPS 2.11 - images.php Remote Code Execution ? errorreportingEERROR; function exploitinit if !extensionloaded'phpcurl' && !extensionloaded'curl' if !dl'curl.so' && !dl'phpcurl.dll' die "oo error - cannot load curl extension!"; function exploitheader echo...

RedBLoG 0.5 - cat_id SQL Injection

RedBLoG 0.5 - catid SQL Injection x128.net oo website : www.x128.net"; function xssexploit $xsstarget = $SERVER'argv'1 . "/modules/blog/rss.php"; $xsshttpget = "?catid=x128"; $xssconnection = curlinit;...

Lansuite <= 2.1.0 Beta (fid) Remote SQL Injection Exploit

No description provided by source. ? errorreportingEERROR; function xssinit if !extensionloaded'phpcurl' if !dl'curl.so' and !dl'phpcurl.so' and !dl'phpcurl.dll' die "oo error - cannot load curl extension!"; function xssheader echo...

ilchClan 1.05g - 'tid' SQL Injection

? errorreportingEERROR; function xssinit if !extensionloaded'phpcurl' if !dl'curl.so' and !dl'phpcurl.so' and !dl'phpcurl.dll' die "oo error - cannot load curl extension!"; function xssheader echo "\noooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo"; echo " oo...

BXCP 0.2.9.9 - tid SQL Injection

BXCP 0.2.9.9 - tid SQL Injection x128.net oo website : www.x128.net"; function xssexploit $xsstarget = $SERVER'argv'1 . "/index.php"; $xsshttpget = "?show=topic&tid...

BXCP <= 0.2.9.9 (tid) Remote SQL Injection Exploit

No description provided by source. ? errorreportingEERROR; function xssinit if !extensionloaded'phpcurl' if !dl'curl.so' and !dl'phpcurl.so' and !dl'phpcurl.dll' die "oo error - cannot load curl extension!"; function xssheader echo...

Mandrake Linux Security Advisory : curl (MDKSA-2005:224)

Stefan Esser discovered that libcurl's URL parser function can have a malloced buffer overflows in two ways if given a too long URL. It cannot be triggered by a redirect, which makes remote exploitation unlikely, but can be passed directly to libcurl allowing for local exploitation and could also...

CVE-2004-1392

PHP 4.0 with cURL functions allows remote attackers to bypass the openbasedir setting and read arbitrary files via a file: URL argument to the curlinit function...

CVE-2004-1392

PHP 4.0 with cURL functions allows remote attackers to bypass the openbasedir setting and read arbitrary files via a file: URL argument to the curlinit function...