131 matches found
CVE-2006-6661
This CVE affects PHP-Update (blog.php)
CVE-2006-6661
Variable overwrite vulnerability in blog.php in PHP-Update 2.7 and earlier allows remote attackers to overwrite arbitrary program variables and execute arbitrary PHP code via multiple vectors that use the extract function, as demonstrated by the 1 f, 2 newmessage, 3 newusername, 4 adminuser, and ...
PHP-Update blog.php Variable Overwriting Arbitrary Code Execution
The remote host is running PHP-Update, a content management system written in PHP. The version of PHP-Update installed on the remote host fails to sanitize user-supplied arguments to the 'blog.php' script before importing them into the global symbol table. By leveraging this flaw, an...
PHP-Update <= 2.7 extract() Auth Bypass / Shell Inject Exploit
No description provided by source. ?php printr' --------------------------------------------------------------------------- PHPUpdate = 2.7 extract auth bypass / shell inject by rgod dork: "Powered by PHP-Update" -site:www.php-update.co.uk mail: retrog at alice dot it site:...
PHP-Update 2.7 - extract() Authentication Bypass Shell Injection
PHP-Update 2.7 - extract Authentication Bypass Shell Injection 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont+...
PHP-Update <= 2.7 extract() Auth Bypass / Shell Inject Exploit
Exploit for unknown platform in category web applications ============================================================== PHP-Update 126 $result.=" ."; else $result...
PHP-Update 2.7 - 'extract()' Authentication Bypass / Shell Injection
126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++;if $cont==15...
Important: Red Hat Security Advisory: php security update for Stronghold
Updated PHP packages that fix multiple security issues are now available for Stronghold 4.0 for Enterprise Linux. This update has been rated as having important security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...
Mandrake Linux Security Advisory : php (MDKSA-2003:019)
A buffer overflow was discovered in the wordwrap function in versions of PHP greater than 4.1.2 and less than 4.3.0. Under certain circumstances, this buffer overflow can be used to overwite heap memory and could potentially lead to remote system compromise. %NASLMINLEVEL 70300 C Tenable Network...
Fedora Core 2 : php-4.3.8-2.1 (2004-223)
This update includes the latest release of PHP 4, including fixes for security issues in memory limit handling CVE-2004-0594, and the striptags function CVE-2004-0595. CVE-2004-0595 is not known to be exploitable in the default configuration if using httpd 2.0.50, but can be triggered if the...
Fedora Core 1 : php-4.3.8-1.1 (2004-222)
This update includes the latest release of PHP 4, including fixes for security issues in memory limit handling CVE-2004-0594, and the striptags function CVE-2004-0595. CVE-2004-0595 is not known to be exploitable in the default configuration if using httpd 2.0.50, but can be triggered if the...