37 matches found
EUVD-2007-1880
Malware in sbrugna...
EUVD-2007-0900
Malware in sbrugna...
SUSE CVE-2007-1885
Integer overflow in the strreplace function in PHP 4 before 4.4.5 and PHP 5 before 5.2.1 allows context-dependent attackers to execute arbitrary code via a single character search string in conjunction with a long replacement string, which overflows a 32 bit length counter. NOTE: this is probably...
CVE-2021-44529
A code injection vulnerability in the Ivanti EPM Cloud Services Appliance CSA allows an unauthenticated user to execute arbitrary code with limited permissions nobody. Recent assessments: h00die-gr3y at January 08, 2023 9:32am UTC reported: During the boring Christmas Days, — those days where you...
Joomla SIGE 3.4.1-FREE / 3.5.3-PRO RFI / Cross Site Scripting
Title: SIGE - Simple Image Gallery Extended joomla extension 3.4.1-FREE / 3.5.3-PRO - Multi Vulnerability Remote File Inclusion RFI & Cross Site Scripting XSS date: 2020-11-11 Vendor Homepage: https://kubik-rubik.de/ Software Link: https://kubik-rubik.de/sige-simple-image-gallery-extended Softwar...
SimplePHPGal 0.7 - Remote File Inclusion Vulnerability
Exploit for php platform in category web applications Title: SimplePHPGal 0.7 - Remote File Inclusion Author: h4shur Vendor Homepage: https://johncaruso.ca Software Link: https://johncaruso.ca/phpGallery/ Software Link: https://sourceforge.net/projects/simplephpgal/ Tested on: Windows 10 & Google...
SimplePHPGal 0.7 - Remote File Inclusion
Title: SimplePHPGal 0.7 - Remote File Inclusion Author: h4shur date:2020-05-05 Vendor Homepage: https://johncaruso.ca Software Link: https://johncaruso.ca/phpGallery/ Software Link: https://sourceforge.net/projects/simplephpgal/ Tested on: Windows 10 & Google Chrome Category : Web Application Bug...
Arbitrary Code Execution
php is vulnerable to arbitrary code execution. A number of buffer overflow flaws were found in the PHP session extension; the strreplace function; and the imapmailcompose function. If very long strings were passed to the strreplace function, an integer overflow could occur in memory allocation. I...
phpBB 2.0.23 - From Variable Tampering to SQL Injection
RIPS Analysis The forum phpBB2 consists of only 50,000 lines of code and RIPS took only 19 seconds for its in-depth security analysis to complete. It found various PHP object injection vulnerabilities which are less severe due to missing gadget chains. Further, many SQL injections are reported du...
CVE-2007-1885
Integer overflow in the strreplace function in PHP 4 before 4.4.5 and PHP 5 before 5.2.1 allows context-dependent attackers to execute arbitrary code via a single character search string in conjunction with a long replacement string, which overflows a 32 bit length counter. NOTE: this is probably...
CVE-2007-1886
Integer overflow in the strreplace function in PHP 4.4.5 and PHP 5.2.1 allows context-dependent attackers to have an unknown impact via a single character search string in conjunction with a single character replacement string, which causes an "off by one overflow."...
Elxis CMS 2009.2 - Remote File Inclusion
\ \ \ / / / \ / / / |// / / // // / / / // // / installation folder.'; include$mosConfigabsolutepath.'/includes/systemplates/router.php'; exit; requireonce$mosConfigabsolutepath.'/includes/Core/loader.php'; file : index2.php http://site.com/elxis-cms/index2.php?mosConfigabsolutepath=sh...
PHP 4.x < 4.4.5, 5.x < 5.2.1 Multiple Integer Overflow Vulnerabilities
PHP is prone to multiple integer overflow vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; ifdescriptio...
PHP str_replace 存在整形溢出漏洞
No description provided by source...
CVE-2008-7055
module.php in ezContents 2.0.3 allows remote attackers to bypass the directory traversal protection mechanism to include and execute arbitrary local files via "....//" doubled dot dot slash sequences in the link parameter, which is not properly filtered using the strreplace function...
Directory traversal
module.php in ezContents 2.0.3 allows remote attackers to bypass the directory traversal protection mechanism to include and execute arbitrary local files via "....//" doubled dot dot slash sequences in the link parameter, which is not properly filtered using the strreplace function...
MySQL secondary vulnerability of simple prevention-vulnerability warning-the black bar safety net
This article is mainly for PHP MySQL simple operation proposed to produce a secondary vulnerability causes, and prevention programmes. A, ask questions As is known, the database operation for some special characters such as single quotes“'”, backslash“\”and other meta-characters have a strict...
Mandriva Update for php MDKSA-2007:048 (php)
Check for the Version of php OpenVAS Vulnerability Test Mandriva Update for php MDKSA-2007:048 php Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
PHP str_replcae() integer overflow
Integer overflow on a large number of single char substring occurance...
Integer overflow
Integer overflow in the strreplace function in PHP 4 before 4.4.5 and PHP 5 before 5.2.1 allows context-dependent attackers to execute arbitrary code via a single character search string in conjunction with a long replacement string, which overflows a 32 bit length counter. NOTE: this is probably...