EUVD-2015-6466

Malware in sbrugna...

CVE-2019-16722

ZZZCMS zzzphp v1.7.2 has an insufficient protection mechanism against PHP Code Execution, because passthru bypasses an strireplace operation...

CVE-2019-16722

ZZZCMS zzzphp v1.7.2 has an insufficient protection mechanism against PHP Code Execution, because passthru bypasses an strireplace operation...

CVE-2019-16722

CVE-2019-16722 affects ZZZCMS zzzphp v1.7.2. The vulnerability arises from an insufficient protection mechanism against PHP Code Execution, where a passthru call bypasses a str_ireplace operation. The connected documents consistently describe this flaw across sources (Red Hat, NVD, CVE registries...

CVE-2019-16722

ZZZCMS zzzphp v1.7.2 has an insufficient protection mechanism against PHP Code Execution, because passthru bypasses an strireplace operation...

CVE-2015-6527

The phpstrreplaceinsubject function in ext/standard/string.c in PHP 7.x before 7.0.0 allows remote attackers to execute arbitrary code via a crafted value in the third argument to the strireplace function...

PT-2016-1111 · Php · Php

Name of the Vulnerable Software and Affected Versions: PHP versions prior to 7.0.0 Description: The issue is related to errors in the code of the php str replace in subject function in the PHP interpreter. It allows remote attackers to execute arbitrary code via a crafted value in the third...

CVE-2007-0911

Off-by-one error in the strireplace function in PHP 5.2.1 might allow context-dependent attackers to cause a denial of service crash...

Internet Bug Bounty: Arbitrary code execution in str_ireplace function

https://bugs.php.net/bug.php?id=70140...

PHP 5.2.1 STR_IReplace Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22505/info PHP is prone to a denial-of-service vulnerability because it fails to properly sanitize user-supplied input. An attacker who can run PHP code on a vulnerable computer may exploit this vulnerability to crash PHP...

Code injection

Off-by-one error in the strireplace function in PHP 5.2.1 might allow context-dependent attackers to cause a denial of service crash...

CVE-2007-0911

Off-by-one error in the strireplace function in PHP 5.2.1 might allow context-dependent attackers to cause a denial of service crash...

EUVD-2007-0905

Off-by-one error in the strireplace function in PHP 5.2.1 might allow context-dependent attackers to cause a denial of service crash...

CVE-2007-0911

CVE-2007-0911 is an off-by-one bug in PHP 5.2.1’s str_ireplace that can cause a denial of service (crash). The connected advisories confirm this issue as part of a set of PHP 5.x fixes and show that vendors (e.g., SUSE) addressed it with security updates (e.g., SUSE PHP5 patch 2684) and generic O...

[PHP-DEV] PHP 5.2.1 crashing Apache/IIS...

Heads up! Installed the latest Win32 binaries of thread-safe PHP 5.2.1 on Win32 Apache and IIS. PHP started crashing definitely PHP - php5ts.dll when I went to access the MyProBB web forum. Win32 Apache flat out crashes, IIS bails with HTTP 500 errors. Forum crashes PHP 5.2.1:...

PHP str_ireplace DoS

$Data = strireplace"n", "br", $Data; can cause PHP engine to crash Because of off-by-one overflow...

PHP 5.2.1 - STR_IReplace Remote Denial of Service

source: https://www.securityfocus.com/bid/22505/info PHP is prone to a denial-of-service vulnerability because it fails to properly sanitize user-supplied input. An attacker who can run PHP code on a vulnerable computer may exploit this vulnerability to crash PHP and the webserver, denying servic...

PHP 5.2.1 - STR_IReplace Remote Denial of Service

PHP 5.2.1 - STRIReplace Remote Denial of Service source: https://www.securityfocus.com/bid/22505/info PHP is prone to a denial-of-service vulnerability because it fails to properly sanitize user-supplied input. An attacker who can run PHP code on a vulnerable computer may exploit this vulnerabili...