Lucene search
+L

151 matches found

OSV
OSV
added 2017/09/23 8:29 p.m.4 views

UBUNTU-CVE-2017-14719

Before version 4.8.2, WordPress was vulnerable to a directory traversal attack during unzip operations in the ZipArchive and PclZip components...

7.5CVSS7.1AI score0.14245EPSS
Exploits1References4
OSV
OSV
added 2017/09/23 8:29 p.m.29 views

CVE-2017-14719

Before version 4.8.2, WordPress was vulnerable to a directory traversal attack during unzip operations in the ZipArchive and PclZip components...

7.5CVSS7AI score
Exploits0References6
Debian CVE
Debian CVE
added 2017/09/23 8:0 p.m.52 views

CVE-2017-14719

Before version 4.8.2, WordPress was vulnerable to a directory traversal attack during unzip operations in the ZipArchive and PclZip components...

7.5CVSS4.1AI score0.14245EPSS
Exploits1
CVE
CVE
added 2017/09/23 8:0 p.m.192 views

CVE-2017-14719

CVE-2017-14719 : WordPress

7.5CVSS8.3AI score0.14245EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2017/09/23 8:0 p.m.35 views

CVE-2017-14719

Before version 4.8.2, WordPress was vulnerable to a directory traversal attack during unzip operations in the ZipArchive and PclZip components...

8.4AI score0.14245EPSS
Exploits1References6
FreeBSD
FreeBSD
added 2017/09/23 12:0 a.m.57 views

wordpress -- multiple issues

wordpress developers report: Before version 4.8.2, WordPress was susceptible to a Cross-Site Scripting attack in the link modal via a javascript: or data: URL. Before version 4.8.2, WordPress allowed a Cross-Site scripting attack in the template list view via a crafted template name. Before versi...

7.5CVSS6.4AI score0.14245EPSS
Exploits1References12
Hacker One
Hacker One
added 2017/02/11 12:11 p.m.75 views

WordPress: Wordpress unzip_file path traversal

Summary The Wordpress unzipfile function https://codex.wordpress.org/FunctionReference/unzipfile is vulnerable to path traversal when extracting zip files. Extracting untrusted zip files using this function this could lead to code execution through placing arbitrary PHP files in the DocumentRoot ...

Exploits0
Tenable Nessus
Tenable Nessus
added 2016/12/05 12:0 a.m.80 views

SUSE SLED12 / SLES12 Security Update : php5 (SUSE-SU-2016:2975-1)

This update for php5 fixes the following issues : - CVE-2016-9137: Use After Free in unserialize bsc1008029 - CVE-2016-5773: ZipArchive class Use After Free Vulnerability in PHP's GC bsc986247 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE...

9.8CVSS8.3AI score0.0926EPSS
Exploits6References7
RedHat Linux
RedHat Linux
added 2016/11/15 11:40 a.m.4 views

php: ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize

phpzip.c in the zip extension in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8 improperly interacts with the unserialize implementation and garbage collection, which allows remote attackers to execute arbitrary code or cause a denial of service use-after-free and application crash...

9.8CVSS7.7AI score0.0926EPSS
Exploits5References4
Prion
Prion
added 2016/08/07 10:59 a.m.40 views

Design/Logic Flaw

phpzip.c in the zip extension in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8 improperly interacts with the unserialize implementation and garbage collection, which allows remote attackers to execute arbitrary code or cause a denial of service use-after-free and application crash...

7.5CVSS9.7AI score0.0926EPSS
Exploits5References12Affected Software1
Cvelist
Cvelist
added 2016/08/07 10:0 a.m.50 views

CVE-2016-5773

phpzip.c in the zip extension in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8 improperly interacts with the unserialize implementation and garbage collection, which allows remote attackers to execute arbitrary code or cause a denial of service use-after-free and application crash...

9.7AI score0.0926EPSS
Exploits5References12
CVE
CVE
added 2016/08/07 10:0 a.m.135 views

CVE-2016-3078

CVE-2016-3078 affects the PHP zip extension (php_zip.c). A crafted ZIP file can trigger an integer overflow in getFromIndex/getFromName within ZipArchive, leading to a heap-based overflow and plausible denial of service or other impact. Affects PHP versions prior to 7.0.6; patched in 7.0.6+ (and ...

9.8CVSS9.8AI score0.56132EPSS
Exploits5References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/07/15 12:0 a.m.61 views

Fedora 23 : php-pecl-zip (2016-4f3c77ef90)

Version 1.13.3 - Fixed bug php71923 integer overflow in ZipArchive::getFrom. CVE-2016-3078 Stas - Fixed bug php72258 ZipArchive converts filenames to unrecoverable form. Anatol - Fixed bug php72434 ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize. Dmitry Note th...

9.8CVSS8.2AI score0.56132EPSS
Exploits10References3
Tenable Nessus
Tenable Nessus
added 2016/07/15 12:0 a.m.77 views

Fedora 24 : php-pecl-zip (2016-79ac80a0d5)

Version 1.13.3 - Fixed bug php71923 integer overflow in ZipArchive::getFrom. CVE-2016-3078 Stas - Fixed bug php72258 ZipArchive converts filenames to unrecoverable form. Anatol - Fixed bug php72434 ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize. Dmitry Note th...

9.8CVSS8.2AI score0.56132EPSS
Exploits10References3
OPENSUSE Linux
OPENSUSE Linux
added 2016/07/07 6:8 p.m.65 views

Security update for php5 (important)

php5 was updated to fix nine security issues. These security issues were fixed: - CVE-2016-5773: ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize bsc986247. - CVE-2016-5772: Double Free Courruption in wddxdeserialize bsc986244. - CVE-2016-5771: Use After Free...

7.5CVSS1.5AI score0.15484EPSS
Exploits10References9
RedhatCVE
RedhatCVE
added 2016/06/29 12:18 p.m.62 views

CVE-2016-5773

phpzip.c in the zip extension in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8 improperly interacts with the unserialize implementation and garbage collection, which allows remote attackers to execute arbitrary code or cause a denial of service use-after-free and application crash...

9.8CVSS7.9AI score0.0926EPSS
Exploits5References1
CNVD
CNVD
added 2016/06/28 12:0 a.m.6 views

PHP memory misreference vulnerability (CNVD-2016-04368)

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. A memory misreference vulnerability exists in PHP's GC algorithm and unserialize function, which can be exploited by remote attackers to execute...

9.8CVSS8.8AI score0.0926EPSS
Exploits5References1
Hacker One
Hacker One
added 2016/06/21 1:38 p.m.36 views

Internet Bug Bounty: ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize

https://bugs.php.net/bug.php?id=72434 This vulnerability was discovered during the auditing of a vendor on Hackerone. Similar to our other submission on bugs.php.net and here, this vulnerability is remotely exploitable. Please feel free to ask for more technical details if necessary. Thank you fo...

6.9AI score
Exploits0
Cvelist
Cvelist
added 2016/05/22 1:0 a.m.43 views

CVE-2014-9767

Directory traversal vulnerability in the ZipArchive::extractTo function in ext/zip/phpzip.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13 and ext/zip/extzip.cpp in HHVM before 3.12.1 allows remote attackers to create arbitrary empty directories via a crafted ZIP archive...

6.7AI score0.04542EPSS
Exploits1References14
CVE
CVE
added 2016/05/22 1:0 a.m.386 views

CVE-2014-9767

CVE-2014-9767 is a directory traversal vulnerability in PHP’s ZipArchive::extractTo (ext/zip/php_zip.c) and HHVM’s ext/zip/ext_zip.cpp. It affects PHP versions before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13, as well as HHVM before 3.12.1, allowing remote attackers to create arbitrary...

4.3CVSS6.9AI score0.04542EPSS
Exploits1References14Affected Software1
Rows per page
Query Builder