210 matches found
PHP 5.2.9 cURL - 'Safe_mode' / 'open_basedir' Restriction Bypass
source: https://www.securityfocus.com/bid/34475/info PHP is prone to a 'safemode' and 'openbasedir' restriction-bypass vulnerability. Successful exploits could allow an attacker to access files in unauthorized locations. This vulnerability would be an issue in shared-hosting configurations where...
Unfixed XSS vulnerability at webdealhosting.com
Security researcher Xylitol, has submitted on 03/10/2009 a cross-site-scripting XSS vulnerability affecting webdealhosting.com, which at the time of submission ranked 1005888 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 28/11/2011. It is...
suPHP 0.7 - 'suPHP_ConfigPath' / 'Safe_Mode()' Restriction Bypass
source: https://www.securityfocus.com/bid/33073/info suPHP is prone to a 'safemode' restriction-bypass vulnerability. Successful exploits may allow attackers to bypass arbitrary PHP configuration options, including the 'safemode' setting. This vulnerability would be an issue in shared-hosting...
PECL Alternative PHP Cache Local 3 - HTML Injection
PECL Alternative PHP Cache Local 3 - HTML Injection source: https://www.securityfocus.com/bid/32934/info PECL Alternative PHP Cache is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content...
PHP SAPI 'php_getuid()' 安全模式绕过漏洞
PHP is prone to a 'safemode' restriction-bypass vulnerability. Successful exploits could allow an attacker to bypass some safe mode restrictions. This vulnerability would be an issue in shared-hosting configurations where multiple users can create and execute arbitrary PHP script code, with the...
MS Windows 2003 Token Kidnapping Local Exploit PoC
No description provided by source. From http://nomoreroot.blogspot.com/2008/10/windows-2003-poc-exploit-for-token.html It has been a long time since Token Kidnapping presentation http://www.argeniss.com/research/TokenKidnapping.pdf was published so I decided to release a PoC exploit for Win2k3 th...
PHP 5.2.5 - Multiple functions safe_mode_exec_dir open_basedir Restriction Bypass Vulnerabilities
PHP 5.2.5 - Multiple functions safemodeexecdir openbasedir Restriction Bypass Vulnerabilities source: https://www.securityfocus.com/bid/31064/info PHP is prone to 'safemodeexecdir' and 'openbasedir' restriction-bypass vulnerabilities. Successful exploits could allow an attacker to execute arbitra...
PHP 5.2.5 - Multiple functions 'safe_mode_exec_dir' / 'open_basedir' Restriction Bypass Vulnerabilities
source: https://www.securityfocus.com/bid/31064/info PHP is prone to 'safemodeexecdir' and 'openbasedir' restriction-bypass vulnerabilities. Successful exploits could allow an attacker to execute arbitrary code. These vulnerabilities would be an issue in shared-hosting configurations where multip...
PHP 5.2.6 - chdir() Function http URL Argument Safe_mode Restriction Bypass
PHP 5.2.6 - chdir Function http URL Argument Safemode Restriction Bypass source: https://www.securityfocus.com/bid/29796/info PHP is prone to multiple 'safemode' restriction-bypass vulnerabilities. Successful exploits could allow an attacker to determine the presence of files in unauthorized...
PHP 5.2.6 - 'chdir()' Function http URL Argument Safe_mode Restriction Bypass
source: https://www.securityfocus.com/bid/29796/info PHP is prone to multiple 'safemode' restriction-bypass vulnerabilities. Successful exploits could allow an attacker to determine the presence of files in unauthorized locations; other attacks are also possible. Exploiting these issues allows...
PHP <= 4.4.7 / 5.2.3 MySQL/MySQLi Safe Mode Bypass Vulnerability
No description provided by source. Affected Products: = PHP 5.2.3 = PHP 4.4.7 Authors: Mattias Bengtsson [email protected] Philip Olausson [email protected] Reported: 2007-06-05 Released: 2007-08-30 CVE: CVE-2007-3997 Issue: A vulnerability exists in PHP's MySQL and MySQLi extenstions which can be use...
PHP <= 4.4.7 / 5.2.3 MySQL/MySQLi Safe Mode Bypass Vulnerability
Exploit for multiple platform in category local exploits ================================================================ PHP Philip Olausson Reported: 2007-06-05 Released: 2007-08-30 CVE: CVE-2007-3997 Issue: A vulnerability exists in PHP's MySQL and MySQLi extenstions which can be used to bypas...
PHP 4.4.75.2.3 - MySQLMySQLi Safe_Mode Bypass
PHP 4.4.75.2.3 - MySQLMySQLi SafeMode Bypass Affected Products: Philip Olausson Reported: 2007-06-05 Released: 2007-08-30 CVE: CVE-2007-3997 Issue: A vulnerability exists in PHP's MySQL and MySQLi extenstions which can be used to bypass PHP's safemode security restriction. Description: PHP is a...
PHP 4.4.7/5.2.3 - MySQL/MySQLi 'Safe_Mode' Bypass
Affected Products: Philip Olausson Reported: 2007-06-05 Released: 2007-08-30 CVE: CVE-2007-3997 Issue: A vulnerability exists in PHP's MySQL and MySQLi extenstions which can be used to bypass PHP's safemode security restriction. Description: PHP is a widely-used general-purpose scripting language...
PMOPB-45-2007:PHP ext/filter Email Validation Vulnerability
Summary The first Post Month of PHP Bugs vulnerability describes a vulnerability in PHP's new input filtering/validation extension. The FILTERVALIDATEEMAIL filter of ext/filter internally uses a wrong regular expression that allows injecting a newline character at the end of the email string...
PHP 5.2.1 - Session.Save_Path() TMPDIR open_basedir Restriction Bypass
PHP 5.2.1 - Session.SavePath TMPDIR openbasedir Restriction Bypass source: https://www.securityfocus.com/bid/23183/info PHP is prone to a 'openbasedir' restriction-bypass vulnerability due to a design error. Successful exploits could allow an attacker to access sensitive information or to write...
PHP 5.2 - FOpen Safe_mode Restriction Bypass
PHP 5.2 - FOpen Safemode Restriction Bypass source: https://www.securityfocus.com/bid/22261/info PHP is prone to a 'safemode' restriction-bypass vulnerability. Successful exploits could allow an attacker to write files in unauthorized locations; other attacks may also be possible. This...
PHP 5.2 - FOpen 'Safe_mode' Restriction Bypass
source: https://www.securityfocus.com/bid/22261/info PHP is prone to a 'safemode' restriction-bypass vulnerability. Successful exploits could allow an attacker to write files in unauthorized locations; other attacks may also be possible. This vulnerability would be an issue in shared-hosting...
PHP 5.2 - Session.Save_Path() Safe_mode open_basedir Restriction Bypass
PHP 5.2 - Session.SavePath Safemode openbasedir Restriction Bypass source: https://www.securityfocus.com/bid/21508/info PHP is prone to a 'safemode' and 'openbasedir' restriction-bypass vulnerability. Successful exploits could allow an attacker to access sensitive information or to write files in...
PHP 5.2 - Session.Save_Path() 'Safe_mode' / 'open_basedir' Restriction Bypass
source: https://www.securityfocus.com/bid/21508/info PHP is prone to a 'safemode' and 'openbasedir' restriction-bypass vulnerability. Successful exploits could allow an attacker to access sensitive information or to write files in unauthorized locations. This vulnerability would be an issue in...