1196 matches found
Lunar CMS 3.3 - Cross-Site Request Forgery Persistent Cross-Site Scripting
Lunar CMS 3.3 - Cross-Site Request Forgery Persistent Cross-Site Scripting CSRF Add Admin =============== input type="hidden" name="name" value="Hacker"...
Lunar CMS 3.3 CSRF And Stored XSS Vulnerability
Summary Lunar CMS is a freely distributable open source content management system written for use on servers running the ever so popular PHP5 & MySQL. Description Lunar CMS suffers from a cross-site request forgery and a stored xss vulnerabilities. The application allows users to perform certain...
Debian DSA-2961-1 : php5 - security update
It was discovered that PHP, a general-purpose scripting language commonly used for web application development, is vulnerable to a heap-based buffer overflow in the DNS TXT record parsing. A malicious server or man-in-the-middle attacker could possibly use this flaw to execute arbitrary code as t...
[SECURITY] [DSA 2961-1] php5 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2961-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso June 16, 2014 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 2961-1 (php5 - security update)
It was discovered that PHP, a general-purpose scripting language commonly used for web application development, is vulnerable to a heap-based buffer overflow in the DNS TXT record parsing. A malicious server or man-in-the-middle attacker could possibly use this flaw to execute arbitrary code as t...
Debian: Security Advisory (DSA-2961-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : php5 (openSUSE-SU-2014:0784-1)
php5 was updated to fix several security issues. These issues were fixed : - Performance degradation by too many fileprintf calls CVE-2014-0237 - DoS in Fileinfo component CVE-2014-0238 - NULL pointer dereference in GD XPM decoder CVE-2014-2497 - Privilege escalation due to insecure default confi...
openSUSE Security Update : apache2-mod_php5 (openSUSE-SU-2011:0645-1)
This php5 update fixes : - CVE-2011-0421: CVSS v2 Base Score: 2.6 AV:N/AC:H/Au:N/C:N/I:N/A:P: Input Validation CWE-20 - CVE-2011-1092: CVSS v2 Base Score: 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P: Numeric Errors CWE-189 - CVE-2011-1148: CVSS v2 Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P: Resource Managemen...
openSUSE Security Update : php5 (openSUSE-SU-2013:1244-1)
fixing the following security issues : - CVE-2013-4635.patch bnc828020 : - Integer overflow in the SdnToJewish - CVE-2013-1635.patch and CVE-2013-1643.patch bnc807707 : - reading system files via untrusted SOAP input - soap.wsdlcachedir function did not honour PHP openbasedir -...
openSUSE Security Update : php5 (openSUSE-SU-2012:0426-1)
php5 security update %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-182. The text description of this plugin is C SUSE LLC. include'deprecatednasllevel.inc'; include'compat.inc'...
openSUSE Security Update : php5 (openSUSE-SU-2012:0826-1)
security update : - Fix BSD crypt 8bit character mishandling CVE-2012-2143 bnc766798 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-365. The text description of this plugin is C...
openSUSE Security Update : php5 (openSUSE-SU-2012:0976-1)
Three security issues were fixed in php5 : CVE-2012-2688: php5: potential overflow in phpstreamscandir CVE-2012-3365: openbasedir bypass via SQLite extension Also a out of band read sql denial of service was fixed bnc769785 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text...
openSUSE Security Update : php5 (openSUSE-SU-2012:0590-1)
when used in CGI mode remote attackers could inject command line arguments to php %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-261. The text description of this plugin is C SU...
openSUSE Security Update : php5 (openSUSE-2012-288)
The patch for CVE-2012-1823 was incomplete, this update fixes the remaining bits CVE-2012-2335, CVE-2012-2336 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-288. The text...
openSUSE Security Update : php5 (openSUSE-SU-2013:1963-1)
security update - CVE-2013-6420.patch bnc854880 - CVE-2013-6712.patch bnc853045 - CVE-2013-4248.patch bnc837746 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-1032. The text...
openSUSE Security Update : php5 (openSUSE-SU-2012:1169-1)
php5 was updated to fix two security issues : - use FilesMatch with 'SetHandler' rather than 'AddHandler' bnc775852 Since this update just hardens a configuration to protect weakly designed web applications, there was no CVE assigned. - A HTTP header Carriage-Return injection flaw was fixed...
openSUSE Security Update : php5 (openSUSE-SU-2012:0695-1)
Specially crafted tar archives could cause an integer overflow in the phar extension %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-311. The text description of this plugin is C...
openSUSE Security Update : php5 (openSUSE-SU-2012:0551-1)
Scripts that accept multiple file uploads in a single request were potentially vulnerable to a directory traversal attack %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-244. The...
CVE-2014-3782
Multiple incomplete blacklist vulnerabilities in the filemanager::isFileExclude method in the Media Manager in Dotclear before 2.6.3 allow remote authenticated users to execute arbitrary PHP code by uploading a file with a 1 double extension or 2 .php5, 3 .phtml, or some other PHP file extension...
Input validation
Multiple incomplete blacklist vulnerabilities in the filemanager::isFileExclude method in the Media Manager in Dotclear before 2.6.3 allow remote authenticated users to execute arbitrary PHP code by uploading a file with a 1 double extension or 2 .php5, 3 .phtml, or some other PHP file extension...