13 matches found
EUVD-2001-1004
Malware in sbrugna...
CakePHP 2.6.13, 2.7.11, 2.8.2, 3.0.17, 3.1.12, and 3.2.5 Released
CakePHP 2.6.13, 2.7.11, 2.8.2, 3.0.17, 3.1.12, and 3.2.5 Released The CakePHP core team is happy to announce the immediate availability of CakePHP 2.6.13, 2.7.11, 2.8.2, 3.0.17, 3.1.12, and 3.2.5. These releases contain security fixes. 3.2.5 and 2.8.2 also contain bugfixes. Security Fixes These...
[SECURITY] Fedora 23 Update: php-doctrine-cache-1.4.2-1.fc23
Cache component extracted from the Doctrine Common project. Optional: APC php-pecl-apc Couchbase http://pecl.php.net/package/couchbase Memcache php-pecl-memcache Memcached php-pecl-memcached MongoDB php-pecl-mongo Redis php-pecl-redis Riak http://pecl.php.net/package/riak XCache php-xcache...
[SECURITY] Fedora 22 Update: php-doctrine-cache-1.4.2-1.fc22
Cache component extracted from the Doctrine Common project. Optional: APC php-pecl-apc Couchbase http://pecl.php.net/package/couchbase Memcache php-pecl-memcache Memcached php-pecl-memcached MongoDB php-pecl-mongo Redis php-pecl-redis Riak http://pecl.php.net/package/riak XCache php-xcache...
[SECURITY] Fedora 21 Update: php-doctrine-cache-1.4.2-1.fc21
Cache component extracted from the Doctrine Common project. Optional: APC php-pecl-apc Couchbase http://pecl.php.net/package/couchbase Memcache php-pecl-memcache Memcached php-pecl-memcached MongoDB php-pecl-mongo Redis php-pecl-redis Riak http://pecl.php.net/package/riak XCache php-xcache...
[SECURITY] Fedora 19 Update: php-doctrine-orm-2.4.2-2.fc19
Object relational mapper ORM for PHP that sits on top of a powerful datab ase abstraction layer DBAL. One of its' key features is the option to write database queries in a proprietary object oriented SQL dialect called Doctri ne Query Language DQL, inspired by Hibernate's HQL. This provides...
[SECURITY] Fedora 20 Update: php-doctrine-orm-2.4.2-2.fc20
Object relational mapper ORM for PHP that sits on top of a powerful datab ase abstraction layer DBAL. One of its' key features is the option to write database queries in a proprietary object oriented SQL dialect called Doctri ne Query Language DQL, inspired by Hibernate's HQL. This provides...
[SECURITY] Fedora 18 Update: php-symfony2-ClassLoader-2.2.10-1.fc18
The ClassLoader Component loads your project classes automatically if they follow some standard PHP conventions. Whenever you use an undefined class, PHP uses the auto-loading mechanism to delegate the loading of a file defining the class. Symfony2 provides a "universal" auto-loader, which is abl...
CVE-2001-1023
Xcache 2.1 allows remote attackers to determine the absolute path of web server documents by requesting a URL that is not cached by Xcache, which returns the full pathname in the Content-PageName header...
CVE-2001-1023
CVE-2001-1023 affects Xcache 2.1. Remote attackers can disclose the server’s absolute paths by requesting a URL that Xcache has not cached; the product returns the full pathname in the Content-PageName header. The vulnerability is an information disclosure: partial confidentiality impact. Affecte...
Реальный путь к файлам в XCache (information leakage)
В заголовках HTTP-ответа содержится реальный путь к файлу...
IRM Security Advisory: Xcache Path Disclosure Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- IRM Security Advisory No. 001 Xcache Webserver Cache Path Disclosure Vulnerability Vulnerablity Type / Importance: Information Leakage / Medium Problem discovered: Mon, 17 Sep 2001...
CVE-2001-1023
Xcache 2.1 allows remote attackers to determine the absolute path of web server documents by requesting a URL that is not cached by Xcache, which returns the full pathname in the Content-PageName header...