Internet Bug Bounty: DirectoryIterator class silently truncates after a null byte

The bug submitted at: https://bugs.php.net/bug.php?id=78863 The security advisory at: https://nvd.nist.gov/vuln/detail/CVE-2019-11045 There's an issue with SPL PHP extension on splfilesystemobjectconstruct function. When creating a new DirectoryIterator object splfilesystemobjectconstruct functio...

PHP str_getcsv()函数中断处理地址信息泄露漏洞

CVE ID: CVE-2010-2100 PHP是广泛使用的通用目的脚本语言，特别适合于Web开发，可嵌入到HTML中。 PHP的strgetcsv函数中存在信息泄露漏洞： PHPFUNCTIONstrgetcsv char str, delim = ',', enc = '"', esc = ''; char delimstr = NULL, encstr = NULL, escstr = NULL; int strlen = 0, delimlen = 0, enclen = 0, esclen = 0; if zendparseparametersZENDNUMARGS...

MOPS-2010-006: PHP addcslashes() Interruption Information Leak Vulnerability

MOPS-2010-006: PHP addcslashes Interruption Information Leak Vulnerability May 3rd, 2010 PHP’s addcslashes function can be abused for information leak attacks, because of the call time pass by reference feature. Affected versions Affected is PHP 5.2 = 5.2.13 Affected is PHP 5.3 = 5.3.2 Credits Th...