1196 matches found
openSUSE Security Update : php / php5 / php53 (openSUSE-SU-2014:0925-1)
This update fixes the following security issues with php, php5 and php53 : - bnc884986, CVE-2014-0207: file: php5: cdfreadshortsector insufficient boundary check - bnc884987, CVE-2014-3478: file: mconvert incorrect handling of truncated pascal string size - bnc884989, CVE-2014-3479: php53: file:...
[DLA-0018-1] php5 security update
Package : php5 Version : 5.3.3-7+squeeze20 CVE ID : CVE-2014-3515 CVE-2014-0207 CVE-2014-3480 CVE-2014-4721 CVE-2014-3515: fix unserialize SPL ArrayObject / SPLObjectStorage Type Confusion CVE-2014-0207: fileinfo: cdfreadshortsector insufficient boundary check CVE-2014-3480: fileinfo: cdfcountcha...
DLA-0018-1 php5 - security update
Bulletin has no description...
Ubuntu: Security Advisory (USN-2276-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[USN-2276-1] PHP vulnerabilities
========================================================================== Ubuntu Security Notice USN-2276-1 July 09, 2014 php5 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...
Debian DSA-2974-1 : php5 - security update
Several vulnerabilities were found in PHP, a general-purpose scripting language commonly used for web application development. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2014-0207 Francisco Alonso of the Red Hat Security Response Team reported an...
[SECURITY] [DSA 2974-1] php5 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2974-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso July 08, 2014 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2974-1] php5 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2974-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso July 08, 2014 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 2974-1 (php5 - security update)
Several vulnerabilities were found in PHP, a general-purpose scripting language commonly used for web application development. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2014-0207 Francisco Alonso of the Red Hat Security Response Team reported an...
Debian: Security Advisory (DSA-2974-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
phpBB 3 (autopost bot mod <= 0.1.3) Remote File Include Vulnerability
No description provided by source. phpBB 3 autopost bot mod = 0.1.3 Remote File Include Vulnerability Vulnerability author: Kacper Greetz: all DEVIL TEAM forum members. Author Website: http://devilteam.pl/ http://polskihacking.pl/ Mod Description: This mod automatically post content from RSS feed...
ThWboard <= 3.0b2.84-php5 SQL Injection / Code Execution Exploit
No description provided by source. ?php printr' ----------------------------------------------------------------------------- ThWboard =3.0 beta 2.84-php5 boardstyleid sql injection / cmd exec exploit by rgod dork: powered by ThWboard version specific: powered by ThWboard 3 Beta 2.84-php5 by...
OvBB 0.16a - Multiple Local File Inclusion Vulnerabilities
No description provided by source. OvBB v0.16a Multiple Local File Inclusion Vulnerabilities Found by cOndemned Tested on Linux Debian apache + php5 + mysql download at http://sourceforge.net/projects/ovbb/ source of /skins/default/addevent.tpl.php 1. ?php 2. // Header. 3. $strPageTitle = ::...
EnterpriseGS <= 1.0 rc4 Remote Commands Execution Exploit
No description provided by source. ?php ---egs10rc4php5inclxpl.php 17.57 13/02/2006 EGS Enterprise Groupware System =1.0 rc4 remote commands execution exploit coded by rgod site: http://retrogod.altervista.org - works against PHP5 usage: launch from Apache, fill in requested fields, then go!...
Lunar CMS 3.3 - CSRF And Stored XSS Vulnerability
No description provided by source. ?!-- Lunar CMS 3.3 CSRF And Stored XSS Vulnerability Vendor: Lunar CMS Product web page: http://www.lunarcms.com Affected version: 3.3 Summary: Lunar CMS is a freely distributable open sourcecontent management system written for use on servers running the ever s...
OrangeHRM 2.6.0.1 - Local File Inclusion Vulnerability
No description provided by source. Exploit Title: OrangeHRM 2.6.0.1 Local File Inclusion Vulnerability Date: 11-10-2010 Author: ZonTa - LkHackerZ - Mail: zontahackersatgmaildotcom Software Link: http://www.orangehrm.com/product-download.php?type=stable-zip...
joomla component ozio gallery 2 - Multiple Vulnerabilities
No description provided by source. !-- Exploit Title: Joomla Component Ozio Gallery 2 Multiple Vulnerabilities Date: 28 May 2010 Author: jdc Software Link: http://extensions.joomla.org/extensions/photos-a-images/photo-flash-gallery/4883 Version: 2.4 Tested on: PHP5, MySQL5 -- h2Ozio Gallery 2/h2...
iGENUS WebMail <= 2.0.2 (config_inc.php) Remote Code Execution Exploit
No description provided by source. !/usr/bin/perl use IO::Socket; print \r\n; print iGENUS WebMail = 2.0.2 remote commads xctn\r\n; print - works against PHP5 with registerglobals = On\r\n; print & allowurlfopen = On\r\n; print by rgod rgodATautisticiDOTorg\r\n; print site:...
ACVSWS Transport.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/23603/info acvswsphp5 is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the...
Joomla Component Answers 2.3beta - Multiple Vulnerabilities
No description provided by source. Exploit Title: Joomla Component Answers v2.3beta Multiple Vulnerabilities Date: 25 May 2010 Author: jdc Software Link: http://extensions.joomla.org/extensions/communication/forum/12652 Version: 2.3beta Tested on: PHP5, MySQL5 Blind SQL Injection...