6 matches found
EUVD-2010-2535
Malware in sbrugna...
Information Disclosure
php is vulnerable to information disclosure. The vulnerability exists as an information leak flaw was discovered in the PHP varexport function implementation. If some fatal error occurred during the execution of this function such as the exhaustion of memory or script execution time limit, part o...
Input validation
The cache handler in MyBB aka MyBulletinBoard before 1.8.4 does not properly check the encoding of input to the varexport function, which allows attackers to have an unspecified impact via unknown vectors...
CVE-2015-2352
CVE-2015-2352 affects MyBB (MyBulletinBoard) up to version 1.8.3; the cache handler fails to properly validate input encoding before passing data to var_export, enabling an unspecified impact via unknown vectors. The issue is resolved in MyBB 1.8.4 per vendor advisories. Practical impact and expl...
CVE-2015-2352
The cache handler in MyBB aka MyBulletinBoard before 1.8.4 does not properly check the encoding of input to the varexport function, which allows attackers to have an unspecified impact via unknown vectors...
CVE-2010-2531
The varexport function in PHP 5.2 before 5.2.14 and 5.3 before 5.3.3 flushes the output buffer to the user when certain fatal errors occur, even if displayerrors is off, which allows remote attackers to obtain sensitive information by causing the application to exceed limits for memory, execution...