Debian DSA-2089-1 : php5 - several vulnerabilities

Several remote vulnerabilities have been discovered in PHP 5, an hypertext preprocessor. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2010-1917 The fnmatch function can be abused to conduct denial of service attacks by crashing the interpreter by the...

DSA-2089-1 php5 - several vulnerabilities

Bulletin has no description...

nginx文件路径处理远程命令执行漏洞

nginx是多平台的HTTP服务器和邮件代理服务器。 nginx可以被配置为以CGI的方式支持PHP的运行，nginx在处理PHP脚本文件路径的解析时存在问题。如果网站允许上传文件，而且上传文件路径可得到，远程攻击者可以利用此漏洞上传包含恶意代码的文件并得到执行，实现以Web进程权限执行任意命令。 问题出现在nginx传递访问的URL和后续的脚本路径提取过程中，攻击者可以上传允许上传的文件类型，文件中包含恶意代码，得到上传文件通过Web可访问的URL后，在其后添加任意php后缀的文件名进行访问，存在漏洞的处理过程会把上传的文件作为CGI脚本执行。...

vBulletin Cyb - Advanced Forum Statistics Denial Of Service

Exploit Title: vBulletin "Cyb - Advanced Forum Statistics" DOS Date: 10-4-2010 Author: Andhra Hackers Software Link: Version: Web Application Tested on: Apcahe/Unix CVE : if exists Code : PHP crashes existed from a long time back and there were several issues which were a reason for that. 1PHP pa...

deV!L'z Clanportal 1.5.2 Remote File Inclusion

========================================================== deV!Lz Clanportal 1.5.2 Remote File Include Vulnerability ========================================================== + deV!Lz Clanportal 1.5.2 Remote File Include Vulnerability...

deV!L`z Clanportal 1.5.2 Remote File Include Vulnerability

========================================================== deV!Lz Clanportal 1.5.2 Remote File Include Vulnerability ========================================================== + deV!Lz Clanportal 1.5.2 Remote File Include Vulnerability...

deV!L`z Clanportal 1.5.2 Remote File Include Vulnerability

Exploit for unknown platform in category web applications ========================================================== deV!Lz Clanportal 1.5.2 Remote File Include Vulnerability ========================================================== + deV!Lz Clanportal 1.5.2 Remote File Include Vulnerability...

DZCP (deV!L_z Clanportal) 1.5.2 - Remote File Inclusion

DZCP deV!Lz Clanportal 1.5.2 - Remote File Inclusion + deV!Lz Clanportal 1.5.2 Remote File Include Vulnerability + Discovered By: cr4wl3r + Download: http://www.dzcp.de/downloads/?action=download&id=131 x Code in dzcp1.5.2/inc/config.php REQUIRES requireonce$basePath."/inc/mysql.php"; $code $tpl ...

DZCP (deV!L`z Clanportal) 1.5.2 - Remote File Inclusion

deV!Lz Clanportal 1.5.2 Remote File Include Vulnerability + Discovered By: cr4wl3r + Download: http://www.dzcp.de/downloads/?action=download&id=131 x Code in dzcp1.5.2/inc/config.php REQUIRES requireonce$basePath."/inc/mysql.php"; $code $tpl = strreplace''.$value.'', $code, $tpl; return $tpl; +...

PHP vulnerability full solution-vulnerability warning-the black bar safety net

PHP web page security issues For PHP website mainly exist the following types of attacks: 1. Command injectionCommand Injection 2. eval injectionEval Injection 3. Client scripting attacksScript Insertion 4. Cross-site scripting attacksCross Site Scripting, XSS 5. SQL injectionattacksSQL injection...

MediaWiki 'IP'参数远程文件包含漏洞

BUGTRAQ: 9057 MediaWiki没有充分过滤用户提交的URI参数，远程攻击者可以利用这个漏洞包含远程服务器上的恶意文件，以WEB权限执行任意代码。 问题应该是对MediaWiki的'IP'参数缺少充分过滤，包含文件可被攻击者任意指令，如果指定远程服务器的恶意PHP文件，可导致以WEB进程权限执行。 MediaWiki-stable 20030829/20031107 临时解决方法： 如果您不能立刻安装补丁或者升级，建议您采取以下措施以降低威胁： 修改php.ini配置文件，关闭'allowurlfopen'和'registerglobals'选项。 厂商补丁：...

DokuWiki: Local file inclusion

Background DokuWiki is a standards compliant Wiki system written in PHP. Description girex reported that data from the "configcascade" parameter in inc/init.php is not properly sanitized before being used. Impact A remote attacker could exploit this vulnerability to execute PHP code from arbitrar...

LightOpenCMS 0.1 Local File Inclusion

LightOpenCMS 0.1 smarty.php cwd Local File Inclusion Vulnerability bug found by Jose Luis Gongora Fernandez a.k.a JosS contact: sys-projectathotmail.com website: http://www.hack0wn.com/ - download: http://sourceforge.net/project/showfiles.php?groupid=251474 smarty.php define"SMARTYDIR",...

LightOpenCMS 0.1 (smarty.php cwd) Local File Inclusion Vulnerability

No description provided by source. LightOpenCMS 0.1 smarty.php cwd Local File Inclusion Vulnerability bug found by Jose Luis Gongora Fernandez a.k.a JosS contact: sys-projectathotmail.com website: http://www.hack0wn.com/ - download: http://sourceforge.net/project/showfiles.php?groupid=251474...

LightOpenCMS 0.1 - 'smarty.php?cwd' Local File Inclusion

LightOpenCMS 0.1 smarty.php cwd Local File Inclusion Vulnerability bug found by Jose Luis Gongora Fernandez a.k.a JosS contact: sys-projectathotmail.com website: http://www.hack0wn.com/ - download: http://sourceforge.net/project/showfiles.php?groupid=251474 smarty.php define"SMARTYDIR",...

PHP 5.2.10 safe_mode Bypass

PHP safemode bypass with exec/system/passthru Once again php public new version :php5.2.10 ,and it fix lots of bugs, like this : Bug 45997safemode bypass with exec/system/passthru incorrect fix php5.2.10 ... b = strrchrcmd, PHPDIRSEPARATOR; ifdef PHPWIN32 if b && b == '\' && b == cmd...

WordPress FireStats 1.6.1 Remote File Inclusion

»===============================================================================================================-X » » » WordPress Plugin FireStats = 1.6.1-stable fsjavascript RFI Vulnerability » » » » ======= ------d-------m------ ==== ==== » » || = | |o o| | || || || » » || = |||| || || » »...

phpWebThings 1.5.2 - MD5 Hash RetrieveFile Disclosure

phpWebThings 1.5.2 - MD5 Hash RetrieveFile Disclosure !/usr/bin/perl phpWebThings = 1.5.2 MD5 Hash Retrieve / File Disclosure Remote Exploit by staker ------------------------------ mail: stakerathotmaildotit url: http://phpwebthings.nl ------------------------------ NOTE: 1. it works regardless ...

unclassified NewsBoard 1.6.4 - Multiple Vulnerabilities

Author girex Homepage girex.altervista.org Date 31/05/2009 CMS Unclassified NewsBoard 1.6.4 and maybe lower Dork "This board is powered by the Unclassified NewsBoard software, 1.6.4" Multiple remote vulnerabilities 1 Remote SQL Injection php.ini regardless 2 Logs File Disclosure registerglobals =...

Jieqi CMS 1.5 Code Execution

test"; $str = filegetcontents$url.$cmd; if filegetcontents$shell == 'test' exit"Expoilt Success!\nView Your shell:\t$shell\n"; else exit"Exploit Failed!\n"; ?...