Lucene search
K

151 matches found

Tenable Nessus
Tenable Nessus
added 2016/05/05 12:0 a.m.284 views

PHP 7.0.x < 7.0.6 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 7.0.x prior to 7.0.6. It is, therefore, affected by multiple vulnerabilities : - A signedness error exists in the GD Graphics library within file gdgd2.c due to improper validation of user-supplied input when handling...

9.8CVSS8.7AI score0.56132EPSS
Exploits21References11
UbuntuCve
UbuntuCve
added 2016/04/29 12:0 a.m.44 views

CVE-2016-3078

Multiple integer overflows in phpzip.c in the zip extension in PHP before 7.0.6 allow remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted call to 1 getFromIndex or 2 getFromName in the ZipArchive...

9.8CVSS7.3AI score0.56132EPSS
Exploits5References3
Hacker One
Hacker One
added 2016/04/28 7:46 a.m.20 views

Internet Bug Bounty: Integer overflow in ZipArchive::getFrom*

https://bugs.php.net/bug.php?id=71923...

6.9AI score
Exploits0
0day.today
0day.today
added 2016/04/28 12:0 a.m.135 views

PHP 7.0.5 - ZipArchive::getFrom* Integer Overflow

Exploit for php platform in category remote exploits Details ======= An integer wrap may occur in PHP 7.x before version 7.0.6 when reading zip files with the getFromIndex and getFromName methods of ZipArchive, resulting in a heap overflow. php-7.0.5/ext/zip/phpzip.c ,---- | 2679 static void...

7.5CVSS0.1AI score0.56132EPSS
Exploits5
exploitpack
exploitpack
added 2016/04/28 12:0 a.m.36 views

PHP 7.0.5 - ZipArchive::getFrom* Integer Overflow

PHP 7.0.5 - ZipArchive::getFrom Integer Overflow Details ======= An integer wrap may occur in PHP 7.x before version 7.0.6 when reading zip files with the getFromIndex and getFromName methods of ZipArchive, resulting in a heap overflow. php-7.0.5/ext/zip/phpzip.c ,---- | 2679 static void...

7.5CVSS0.6AI score0.56132EPSS
Exploits5
Packet Storm
Packet Storm
added 2016/04/28 12:0 a.m.69 views

PHP 7.x Heap Overflow

Details ======= An integer wrap may occur in PHP 7.x before version 7.0.6 when reading zip files with the getFromIndex and getFromName methods of ZipArchive, resulting in a heap overflow. php-7.0.5/ext/zip/phpzip.c ,---- | 2679 static void phpzipgetfromINTERNALFUNCTIONPARAMETERS, int type / / |...

7.5CVSS0.6AI score0.56132EPSS
Exploits5
CNVD
CNVD
added 2016/04/28 12:0 a.m.12 views

PHP ZipArchive::getFrom* Integer Overflow Vulnerability

PHP PHP: Hypertext Preprocessor, PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community.PHP ZipArchive is an extension class that comes with PHP that enables compression and decompression of ZIP files. An...

9.8CVSS9.3AI score0.56132EPSS
Exploits5References1
Exploit DB
Exploit DB
added 2016/04/28 12:0 a.m.216 views

PHP 7.0.5 - ZipArchive::getFrom* Integer Overflow

Details ======= An integer wrap may occur in PHP 7.x before version 7.0.6 when reading zip files with the getFromIndex and getFromName methods of ZipArchive, resulting in a heap overflow. php-7.0.5/ext/zip/phpzip.c ,---- | 2679 static void phpzipgetfromINTERNALFUNCTIONPARAMETERS, int type / / |...

9.8CVSS9.6AI score0.56132EPSS
Exploits5
0day.today
0day.today
added 2016/04/11 12:0 a.m.27 views

CAM UnZip 5.1 - .'ZIP' File Directory Traversal

Exploit for windows platform in category local exploits + Credits: hyp3rlinx Vendor: ================= www.camunzip.com Product: ============== CAM UnZip v5.1 Vulnerability Type: ====================== Archive Path Traversal CVE Reference: ============== N/A Vulnerability Details:...

6.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/09/21 12:0 a.m.14 views

Fedora 23 : php-pecl-zip-1.13.1-1.fc23 (2015-15273)

Upstream change, Version 1.13 update bundled libzip to 1.0.1 Remi, Anatol new methods for ZipArchive: setCompressionName, setCompressionIndex Cedric Delmas allow to build with PHP 7 Fixed bug 70350 ZipArchive::extractTo allows for directory traversal when creating directories. neal at fb dot com...

5.5AI score
Exploits0References2
UbuntuCve
UbuntuCve
added 2014/12/31 12:0 a.m.34 views

CVE-2014-9767

Directory traversal vulnerability in the ZipArchive::extractTo function in ext/zip/phpzip.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13 and ext/zip/extzip.cpp in HHVM before 3.12.1 allows remote attackers to create arbitrary empty directories via a crafted ZIP archive...

4.3CVSS6.9AI score0.04542EPSS
Exploits1References2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

PHP 5.3.3/5.2.14 ZipArchive::getArchiveComment NULL Pointer Deference

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.23 views

MobileCartly 1.0 - Remote File Upload Vulnerability

No description provided by source. Exploit Title: MobileCartly 1.0 Remote File Upload Vulnerability Google Dork: - Date: 14/08/2012 Exploit Author: ICheerNo0M Vendor Homepage: http://icheernoom.blogspot.com/ Software Link: http://mobilecartly.com/mobilecartly.zip Version: 1.0 Tested on: Ubuntu...

7.1AI score
Exploits0
0day.today
0day.today
added 2012/08/15 12:0 a.m.29 views

MobileCartly 1.0 Remote File Upload Vulnerability

Exploit for php platform in category web applications Exploit Title: MobileCartly 1.0 Remote File Upload Vulnerability Google Dork: - Date: 14/08/2012 Exploit Author: ICheerNo0M Vendor Homepage: http://icheernoom.blogspot.com/ Software Link: http://mobilecartly.com/mobilecartly.zip Version: 1.0...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2012/08/15 12:0 a.m.15 views

MobileCartly 1.0 - Arbitrary File Upload

MobileCartly 1.0 - Arbitrary File Upload Exploit Title: MobileCartly 1.0 Remote File Upload Vulnerability Google Dork: - Date: 14/08/2012 Exploit Author: ICheerNo0M Vendor Homepage: http://icheernoom.blogspot.com/ Software Link: http://mobilecartly.com/mobilecartly.zip Version: 1.0 Tested on:...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2012/08/15 12:0 a.m.23 views

MobileCartly 1.0 - Arbitrary File Upload

Exploit Title: MobileCartly 1.0 Remote File Upload Vulnerability Google Dork: - Date: 14/08/2012 Exploit Author: ICheerNo0M Vendor Homepage: http://icheernoom.blogspot.com/ Software Link: http://mobilecartly.com/mobilecartly.zip Version: 1.0 Tested on: Ubuntu 10.10 + PHP 5.3.3 1. Vuln Code :...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2011/10/21 12:0 a.m.58 views

Ubuntu Update for php5 USN-1231-1

Ubuntu Update for Linux kernel vulnerabilities USN-1231-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12311.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for php5 USN-1231-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...

7.5CVSS0.4AI score0.23129EPSS
Exploits17References2
Tenable Nessus
Tenable Nessus
added 2011/10/19 12:0 a.m.63 views

Ubuntu 8.04 LTS / 10.04 LTS / 10.10 / 11.04 / 11.10 : php5 vulnerabilities (USN-1231-1)

Mateusz Kocielski, Marek Kroemeke and Filip Palian discovered that a stack-based buffer overflow existed in the socketconnect function's handling of long pathnames for AFUNIX sockets. A remote attacker might be able to exploit this to execute arbitrary code; however, the default compiler options...

7.5CVSS8.8AI score0.23129EPSS
Exploits17References9
Ubuntu
Ubuntu
added 2011/10/18 6:22 a.m.102 views

USN-1231-1: PHP Vulnerabilities

Mateusz Kocielski, Marek Kroemeke and Filip Palian discovered that a stack-based buffer overflow existed in the socketconnect function's handling of long pathnames for AFUNIX sockets. A remote attacker might be able to exploit this to execute arbitrary code; however, the default compiler options...

7.5CVSS8.6AI score0.23129EPSS
Exploits17
OpenVAS
OpenVAS
added 2011/09/07 12:0 a.m.82 views

PHP Multiple Vulnerabilities (Sep 2011) - Windows

PHP is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...

10CVSS8.5AI score0.19152EPSS
Exploits2References4
Rows per page
Query Builder