ZendStudio IDE Elevation of Privilege Vulnerability

Zend Studio is the leading PHP IDE. It is the only PHP IDE that combines mobile development with PHP and includes a sample mobile application source code. A local elevation of privilege vulnerability has been reported in Zend 13.5.1. A local attacker may be able to exploit this vulnerability to...

ZendStudio IDE Privilege Vulnerability

Zend Studio is Zend Technologies developed PHP language integrated development environment Integrated Development Environment IDE, which combines PHP and mobile development , and includes some simple mobile application source code. An elevation of privilege vulnerability exists in ZendStudio IDE...

Zend Studio IDE 13.5.1 - Insecure File Permissions Privilege Escalation

Zend Studio IDE 13.5.1 - Insecure File Permissions Privilege Escalation + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/ZEND-STUDIO-PRIVILEGE-ESCALATION.txt + ISR: ApparitionSec Vendor: ============ www.zend.com Product:...

Zend Studio函数描述脚本注入漏洞

Zend Studio是Zend Technologies开发的PHP语言集成开发环境。 Zend Studio没有对PHP函数的描述进行转义或htmlencode编码便在tooltip对话框中显示，用户受骗打开了特制的PHP文件并通过 tooltip显示了恶意函数描述就会导致注入并执行恶意代码。 Zend Studio 7.2.0 厂商补丁： Zend ---- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.zend.com/downloads ?php / scriptnew...

Zend Studio Cross Zone Command Execution

Author: www.80vul.com Email: [email protected] Release Date: 2010/7/10 References: http://80vul.com/Zend%20studio/Zend%20studio%20location%20Cross.htm Zend Studio is a commercial, proprietary integrated development environment IDE for PHP developed by Zend Technologies, based on the PHP...