4 matches found
EUVD-2007-1454
Malware in sbrugna...
SUSE CVE-2007-1461
The compress.bzip2:// URL wrapper provided by the bz2 extension in PHP before 4.4.7, and 5.x before 5.2.2, does not implement safemode or openbasedir checks, which allows remote attackers to read bzip2 archives located outside of the intended directories...
PHP safemode bypass
By using LOADFILE, INTO DUMPFILE, INTO OUTFILE SQL modifiers it's possible to access files behind basedir...
PT-2007-1480 · Php · Php
Name of the Vulnerable Software and Affected Versions: PHP versions prior to 4.4.4 Description: The issue concerns the imap body function, which does not implement safemode or open basedir checks. This allows local users to read arbitrary files or list arbitrary directory contents. Recommendation...