Advanced Guestbook version 2.4.2 Multiple Error Information Leak Vulnerabilities

netVigilance Security Advisory 11 Advanced Guestbook version 2.4.2 Multiple Error Information Leak Vulnerabilities Description: Advanced Guestbook is a PHP-based guestbook script. It includes many useful features such as preview, templates, e-mail notification, picture upload, page spanning , htm...

Debian DSA-1282-1 : php4 - several vulnerabilities

Several remote vulnerabilities have been discovered in PHP, a server-side, HTML-embedded scripting language, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-1286 Stefan Esser discovered an overflow ...

Debian DSA-1264-1 : php4 - several vulnerabilities

Several remote vulnerabilities have been discovered in PHP, a server-side, HTML-embedded scripting language, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-0906 It was discovered that an integer...

PT-2007-2700 · Php +1 · Php +1

Name of the Vulnerable Software and Affected Versions: PHP versions 4.x before 4.4.7 PHP versions 5.x before 5.2.2 Description: The issue allows remote attackers to cause a denial of service, resulting in stack exhaustion and a PHP crash. This is achieved by using deeply nested arrays, which...

SUSE-SA:2006:031: PHP4,PHP5

The remote host is missing the patch for the advisory SUSE-SA:2006:031 PHP4,PHP5. This update fixes the following security issues in the PHP scripting language, both version 4 and 5: - Invalid characters in session names were not blocked. - CVE-2006-2657: A bug in zendhashdel allowed attackers to...

SUSE-SA:2006:067: php4,php5

The remote host is missing the patch for the advisory SUSE-SA:2006:067 php4,php5. This update fixes the following security problems in the PHP scripting language: - CVE-2006-5465: Various buffer overflows in htmlentities / htmlspecialchars internal routines could be used to crash the PHP...

SUSE-SA:2006:034: php4

The remote host is missing the patch for the advisory SUSE-SA:2006:034 php4. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. This plugin text was extracted from SuSE Security Advisory SUSE-SA:2006:034 if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc';...

SUSE-SA:2006:059: php4,php5

The remote host is missing the patch for the advisory SUSE-SA:2006:059 php4,php5. The inirestore method could be exploited to reset options such as openbasedir when set via the web server config file to their default value set in php.ini CVE-2006-4625. Additionally php5 on all products as well as...

SUSE-SA:2006:052: php4,php5

The remote host is missing the patch for the advisory SUSE-SA:2006:052 php4,php5. Various security problems have been fixed in the PHP script language engine and its modules, versions 4 and 5. The PHP4 updated packages were released on September 12, the PHP5 update packages were released on...

[SECURITY] Fedora Core 6 Update: squirrelmail-1.4.8-3.fc6

SquirrelMail is a standards-based webmail package written in PHP4. It includes built-in pure PHP support for the IMAP and SMTP protocols, and all pages render in pure HTML 4.0 with no Javascript for maximum compatibility across browsers. It has very few requirements and is very easy to configure...

[SECURITY] Fedora Core 5 Update: squirrelmail-1.4.8-3.fc5

SquirrelMail is a standards-based webmail package written in PHP4. It includes built-in pure PHP support for the IMAP and SMTP protocols, and all pages render in pure HTML 4.0 with no Javascript for maximum compatibility across browsers. It has very few requirements and is very easy to configure...

[Full-disclosure] logahead UNU edition 1.0 Remote upload file & code execution

-=--------------------ADVISORY-------------------=- logahead UNU edition 1.0 Author: CorryL [email protected] -=-----------------------------------------------=- -=+ Application: logahead UNU edition -=+ Version: 1.0 -=+ Vendor's URL: http://typo.i24.cc/logahead/ -=+ Platform: WindowsLinuxUnix -...

Debian DSA-1206-1 : php4 - several vulnerabilities

Several remote vulnerabilities have been discovered in PHP, a server-side, HTML-embedded scripting language, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2005-3353 Tim Starling discovered that missing...

[SECURITY] [DSA 1206-1] New php4 packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1206-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 6th, 2006 http://www.debian.org/security/faq -...

kawf (config) Remote File Include

kawf config Remote File Include --------------------------------------------------------------------------------------------- Kawf is a web forum written in PHP4 using MySQL v. 1.0 and all below -------------------------------------------------------------------------------------------- download ...

kawf 1.0 - main.php Remote File Inclusion

kawf 1.0 - main.php Remote File Inclusion kawf config Remote File Include --------------------------------------------------------------------------------------------- Kawf is a web forum written in PHP4 using MySQL v. 1.0 and all below...

kawf <= 1.0 (main.php) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ======================================================== kawf = 1.0 main.php Remote File Include Vulnerability ======================================================== kawf config Remote File Include...

kawf 1.0 - &#039;main.php&#039; Remote File Inclusion

kawf config Remote File Include --------------------------------------------------------------------------------------------- Kawf is a web forum written in PHP4 using MySQL v. 1.0 and all below -------------------------------------------------------------------------------------------- download ...

ALiCE-CMS 0.1 (CONFIG[local_root]) Remote File Include Vulnerability

Exploit for unknown platform in category web applications ==================================================================== ALiCE-CMS 0.1 CONFIGlocalroot Remote File Include Vulnerability ====================================================================...

ALiCE-CMS 0.1 - CONFIG[local_root] Remote File Inclusion

ALiCE-CMS 0.1 - CONFIGlocalroot Remote File Inclusion +------------------------------------------------------------------------------------------- + ALiCE-CMS 0.1 CONFIGlocalroot Remote File Include Vulnerability...