USN-320-1: PHP vulnerabilities

The phpinfo PHP function did not properly sanitize long strings. A remote attacker could use this to perform cross-site scripting attacks against sites that have publicly-available PHP scripts that call phpinfo. Please note that it is not recommended to publicly expose phpinfo. CVE-2006-0996 An...

CVE-2006-3282

requirements.php in Dating Agent PRO 4.7.1 allows remote attackers to obtain sensitive information via a direct request, which calls the phpinfo function...

CVE-2006-3282

The CVE-2006-3282 entry affects Dating Agent PRO 4.7.1, where the file requirements.php can be accessed directly to invoke phpinfo. This allows remote attackers to obtain sensitive information through a direct request, constituting an information disclosure vulnerability. The NVD entry confirms a...

datingAgent.txt

Dating Agent PRO 4.7.1 http://www.datetopia.com/datingagent/ -------------------------------------- ------------- PHPinfo page /requirements.php ------------- SQL injection ------------- http://target.xx/picture.php?pid=1SQL http://target.xx/mem.php?mid=1SQL...

Dating Agent PRO 4.7.1 Vulnerability

Dating Agent PRO 4.7.1 http://www.datetopia.com/datingagent/ -------------------------------------- ------------- PHPinfo page /requirements.php ------------- SQL injection ------------- http://target.xx/picture.php?pid=1SQL http://target.xx/mem.php?mid=1SQL...

CVE-2006-3112

Chipmailer 1.09 allows remote attackers to obtain sensitive information via a direct request to php.php, which displays the output of the phpinfo function...

CVE-2006-3112

Chipmailer 1.09 allows remote attackers to obtain sensitive information via a direct request to php.php, which displays the output of the phpinfo function...

CVE-2006-3112

The CVE-2006-3112 issue affects Chipmailer 1.09 and allows remote attackers to obtain sensitive information by issuing a direct request to php.php, which exposes the output of phpinfo. This directly implies partial confidentiality impact as described, but exploitation details, affected versions b...

Chipmailer <= 1.09 Multiple Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: Chipmailer = 1.09 Multiple Vulnerabilities Release Date: 2006/06/13 Last Modified: 2006/06/13 Author: Tamriel tamriel at gmx dot net Application: Chipmailer = 1.09 Risk: Medium Vendor Status: no patch available Vendor Site: chipmailer.de...

chipmailer109.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: Chipmailer "; ... Nothing will be checked so an attacker can send the site administrator some shit. In the complete script you can found this vulnerabilities so i mention only one example here. 2 SQL Injection Vulnerability in main.php arrou...

php security update

CentOS Errata and Security Advisory CESA-2006:0501-02 Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting...

SUSE-SA:2006:024: php4,php5

The remote host is missing the patch for the advisory SUSE-SA:2006:024 php4,php5. This update fixes the following security issues in the scripting languages PHP4 and PHP5: - copy and tempnam functions could bypass openbasedir restrictions CVE-2006-1494 - Cross-Site-Scripting XSS bug in phpinfo...

SQL-Injection in evoArticles

Advisory: SQL-Injection in evoArticles Home Page: http://evo-dev.com/ Уязвимость/Vulnerability: SQL-injection Уязвимый скрипт/Vulnerable script: index.php http://www.target.com/index.php?do=cat&total=19&cid=37&sort=date&order=desc'&page=2...

security flaw

Cross-site scripting XSS vulnerability in phpinfo info.c in PHP 5.1.2 and 4.4.2 allows remote attackers to inject arbitrary web script or HTML via long array variables, including 1 a large number of dimensions or 2 long values, which prevents HTML tags from being removed...

CVE-2005-4787

Turnkey Web Tools SunShop Shopping Cart allows remote attackers to obtain sensitive information via a phpinfo action to 1 index.php, 2 admin/index.php, and 3 admin/adminindex.php, which executes the PHP phpinfo function. NOTE: The vendor has disputed this issue, saying that "Having this in the co...

CVE-2005-4787

Turnkey Web Tools SunShop Shopping Cart is affected by CVE-2005-4787 via endpoints that execute PHP’s phpinfo() (index.php, admin/index.php, admin/adminindex.php), potentially exposing sensitive information. The root cause is the direct invocation of phpinfo() in these pages, enabling information...

CVE-2006-1831

CVE-2006-1831 : Direct static code injection in Sysinfo’s web interface. Sysinfo.cgi in sysinfo 1.21 and potentially versions before 2.25 allows remote command execution via a leading semicolon in the name parameter of a systemdoc action, which is injected into phpinfo.php. Affected: Sysinfo web-...

Cross site scripting

Cross-site scripting XSS vulnerability in phpinfo info.c in PHP 5.1.2 and 4.4.2 allows remote attackers to inject arbitrary web script or HTML via long array variables, including 1 a large number of dimensions or 2 long values, which prevents HTML tags from being removed...

CVE-2006-0996

The CVE-2006-0996 issue is a cross-site scripting vulnerability in PHP’s phpinfo output that allows remote attackers to inject script/HTML via long array variables. Publicly disclosed in PHP 5.1.2 and 4.4.2, the flaw arises from inadequate sanitization of long strings, enabling XSS in pages that ...

PHP 4.x/5.0/5.1 - PHPInfo Large Input Cross-Site Scripting

source: https://www.securityfocus.com/bid/17362/info PHP is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an...