Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

seebug.org
seebug.orgadded 2011/04/28 12:0 a.m.10 views

PHP <5.2.6 posix_access()函数服务控制绕过漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2009/12/14 12:0 a.m.11 views

PHP posix_access 函数导致safe_mode被绕过

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2008/12/10 12:0 a.m.58 views

PHP 5 'posix_access()'功安全模式绕过目录遍历漏洞

CVE-2008-2665 PHP is prone to a directory-traversal vulnerability because it fails to adequately sanitize user-supplied data. Attackers can leverage this issue to bypass security restrictions enforced by 'safemode' to access data outside of the root webserver directory. Successful attacks may all...

5CVSS6AI score0.02746EPSS
Exploits4
securityvulns
securityvulnsadded 2008/06/23 12:0 a.m.60 views

PHP safe_mode protection bypass

Protection bypass with posixaccess, chdir, ftok functions...

5CVSS2AI score0.07274EPSS
Exploits6References2Affected Software1
securityvulns
securityvulnsadded 2008/06/23 12:0 a.m.55 views

[Full-disclosure] PHP 5.2.6 posix_access&#40;&#41; &#40;posix ext&#41; safe_mode bypass

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 PHP 5.2.6 posixaccess posix ext safemode bypass Author: Maksymilian Arciemowicz cXIb8O3 SecurityReason.com Date: - - Written: 10.05.2008 - - Public: 17.06.2008 SecurityReason Research SecurityAlert Id: 54 CVE: CVE-2008-2665 CWE: CWE-264 SecurityRisk:...

5CVSS8.4AI score0.02746EPSS
Exploits4
seebug.org
seebug.orgadded 2008/06/23 12:0 a.m.40 views

PHP 5 'posix_access()'函数'safe_mode'绕过目录遍历漏洞

BUGTRAQ ID: 29797 CVE ID:CVE-2008-2665 CNCVE ID:CNCVE-20082665 PHP 5是一款开放源代码的网络编程语言。 PHP 5 'posixaccess'存在'safemode绕过问题,远程攻击者可以利用漏洞访问WEB ROOT目录之外的数据,导致敏感信息泄漏。 问题代码如下: - --- PHPFUNCTIONposixaccess long mode = 0; int filenamelen, ret; char filename, path; if zendparseparametersZENDNUMARGS TSRMLSCC,...

5CVSS6.3AI score0.02746EPSS
Exploits4
UbuntuCve
UbuntuCveadded 2008/06/20 1:41 a.m.26 views

CVE-2008-2665

Directory traversal vulnerability in the posixaccess function in PHP 5.2.6 and earlier allows remote attackers to bypass safemode restrictions via a .. dot dot in an http URL, which results in the URL being canonicalized to a local filename after the safemode check has successfully run...

5CVSS7.1AI score0.02746EPSS
Exploits4References1
NVD
NVDadded 2008/06/20 1:41 a.m.17 views

CVE-2008-2665

Directory traversal vulnerability in the posixaccess function in PHP 5.2.6 and earlier allows remote attackers to bypass safemode restrictions via a .. dot dot in an http URL, which results in the URL being canonicalized to a local filename after the safemode check has successfully run...

5CVSS7.5AI score0.02746EPSS
Exploits4References17
seebug.org
seebug.orgadded 2008/06/20 12:0 a.m.39 views

PHP 5 posix_access()函数绕过safe_mode限制漏洞

BUGTRAQ ID: 29797 CVECAN ID: CVE-2008-2665 PHP是广泛使用的通用目的脚本语言,特别适合于Web开发,可嵌入到HTML中。 PHP 5的posixaccess函数在处理用户数据时存在漏洞,远程攻击者可能利用此漏洞绕过检查过滤。 在PHP的posixaccess函数中: - --- PHPFUNCTIONposixaccess long mode = 0; int filenamelen, ret; char filename, path; if zendparseparametersZENDNUMARGS TSRMLSCC, "s|l",...

5CVSS6.4AI score0.02746EPSS
Exploits4
Rows per page
Query Builder