Lucene search
K
FriendsofphpMost viewed

1702 matches found

Friends Of PHP
Friends Of PHP
•added 2024/02/27 8:26 p.m.•171 views

Deserialization Gadget chain in Swift Mailer dependancy

Summary Symfony 1 has a gadget chain due to vulnerable Swift Mailer dependency that would enable an attacker to get remote code execution if a developer unserialize user input in his project. Details This vulnerability present no direct threat but is a vector that will enable remote code executio...

9CVSS5.7AI score0.01485EPSS
Exploits1Affected Software1
Friends Of PHP
Friends Of PHP
•added 2023/12/12 8:52 p.m.•167 views

TYPO3-EXT-SA-2023-011: Configuration Injection in extension "Direct Mail" (direct_mail)

More info at https://typo3.org/security/advisory/typo3-ext-sa-2023-011...

7.2AI score0.01517EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2015/03/01 9:13 a.m.•146 views

PHP object injection attack vulnerability in Slim.

https://github.com/slimphp/Slim/blob/master/Slim/Middleware/SessionCookie.phpL127 Generally, it's a bad idea to blindly unserialize user-controllable input. https://www.owasp.org/index.php/PHPObjectInjection EDIT - for people who don't want to read the whole thread: The SessionCookie class is not...

7.5CVSS6.2AI score0.02497EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2018/11/20 7:50 p.m.•105 views

XXE Vulnerability

This is: - X a bug report - a feature request - not a usage question ask them on https://stackoverflow.com/questions/tagged/phpspreadsheet or https://gitter.im/PHPOffice/PhpSpreadsheet What is the expected behavior? The securityScan function is used to prevent XXE attacks. What is the current...

8.8CVSS8.5AI score0.07791EPSS
Exploits4Affected Software1
Friends Of PHP
Friends Of PHP
•added 2022/08/20 11:11 a.m.•102 views

ReactPHP's HTTP server parses encoded cookie names so malicious `__Host-` and `__Secure-` cookies can be sent

Description Impact In ReactPHP's HTTP server component versions below v1.7.0, when ReactPHP is processing incoming HTTP cookie values, the cookie names are url-decoded. This may lead to cookies with prefixes like Host- and Secure- confused with cookies that decode to such prefix, thus leading to ...

5CVSS6.5AI score0.05029EPSS
Exploits2Affected Software1
Friends Of PHP
Friends Of PHP
•added 2023/09/06 3:24 p.m.•92 views

Snappy PHAR deserialization vulnerability

Issue On March 17th the vulnerability CVE-2023-28115 was disclosed, allowing an attacker to gain remote code execution through PHAR deserialization. To fix this issue, the version 1.4.2 was released with an additional check in the affected function to prevent the usage of the phar:// wrapper...

9.8CVSS9.7AI score0.0276EPSS
Exploits2Affected Software1
Friends Of PHP
Friends Of PHP
•added 2023/04/17 4:0 p.m.•85 views

Improper Input Validation in headers

Description Impact Improper header parsing. An attacker could sneak in a newline \n into both the header names and values. While the specification states that \r\n\r\n is used to terminate the header list, many servers in the wild will also accept \n\n. Patches The issue is patched in 1.6.1...

5.7AI score0.01216EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2023/11/30 12:40 p.m.•84 views

Test code in published microsoft-graph package exposes phpinfo()

More info at https://nvd.nist.gov/vuln/detail/CVE-2023-49282...

5.4CVSS7.2AI score0.02203EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2023/09/11 12:55 p.m.•79 views

symfony/ux-autocomplete Prevent injection of invalid entity ids for "autocomplete" fields

Impact Under certain circumstances, an attacker could successfully submit an entity id for an EntityType that is not part of the valid choices. Affected applications are any that use: A custom querybuilder option to limit the valid results; AND An EntityType with 'autocomplete' = true or a custom...

6.5CVSS6.3AI score0.00523EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2016/07/14 1:33 p.m.•78 views

Cross-site scripting (XSS) vulnerability in flashmediaelement.swf in MediaElement.js before 2.11.2 (see CVE-2013-1967)

More info at https://contao.org/en/news/contao-3515.html...

4.3CVSS6.6AI score0.06405EPSS
Exploits1Affected Software1
Friends Of PHP
Friends Of PHP
•added 1970/01/01 12:0 a.m.•77 views

PHP Code Injection

phpWhois PHP Code Injection\nVulnerability Overview\nphpWhois and some of its forks in versions before 5.1.0 are prone to a\ncode injection vulnerability due to insufficient sanitization of returned\nWHOIS data. This allows attackers controlling the WHOIS information of a\nrequested domain to...

7.5CVSS9.7AI score0.06195EPSS
Exploits1Affected Software1
Friends Of PHP
Friends Of PHP
•added 2023/08/03 6:2 a.m.•75 views

Observable Response Discrepancy on Admin Login

Impact It allows over the Admin Login form to detect which user username, email exists and which one do not exist. Impacted by this issue are Sulu installation = 2.5.0 and getMessage; instead the $exception-getMessageKey; References Currently no references...

4.3CVSS4.3AI score0.00496EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2019/06/25 12:0 a.m.•74 views

PRODSECBUG-2246: Stored cross-site scripting in the WYSIWYG editor

More info at https://magento.com/security/patches/magento-2.3.2-2.2.9-and-2.1.18-security-update-23...

5.4CVSS7.2AI score0.00566EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2023/03/17 3:47 p.m.•72 views

PHAR deserialization allowing remote code execution

Description snappy is vulnerable to PHAR deserialization due to a lack of checking on the protocol before passing it into the fileexists function. If an attacker can upload files of any type to the server he can pass in the phar:// protocol to unserialize the uploaded file and instantiate arbitra...

9.8CVSS9.9AI score0.0276EPSS
Exploits1Affected Software1
Friends Of PHP
Friends Of PHP
•added 2019/06/25 12:0 a.m.•72 views

PRODSECBUG-2351: Arbitrary code execution via crafted sitemap creation

More info at https://magento.com/security/patches/magento-2.3.2-2.2.9-and-2.1.18-security-update-13...

7.2CVSS7.2AI score0.02413EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 1970/01/01 12:0 a.m.•70 views

Class-Name Injection

Tested on 1.8.0-beta-5 In safe mode with html markup disabled, it is possible to insert any classname into a code block like this: \js any-class-name with spaces code \ renders as: code infostring needs some cleanup here:...

8.1CVSS8AI score0.01469EPSS
Exploits1Affected Software1
Friends Of PHP
Friends Of PHP
•added 2021/06/23 11:56 p.m.•68 views

TOCTOU Race Condition enabling remote code execution

Impact The whitespace normalisation using in 1.x and 2.x removes any unicode whitespace. Under certain specific conditions this could potentially allow a malicious user to execute code remotely. The conditions: - A user is allowed to supply the path or filename of an uploaded file. - The supplied...

9.8CVSS9.1AI score0.03486EPSS
Exploits2Affected Software1
Friends Of PHP
Friends Of PHP
•added 2024/03/19 1:59 p.m.•64 views

Deserialization Gadget chain in Symfony sfNamespacedParameterHolder

Summary Symfony 1 has a gadget chain due to dangerous unserialize in sfNamespacedParameterHolder class that would enable an attacker to get remote code execution if a developer unserialize user input in his project. Details This vulnerability present no direct threat but is a vector that will...

9.8CVSS9.9AI score0.01534EPSS
Exploits1Affected Software1
Friends Of PHP
Friends Of PHP
•added 2019/10/08 12:0 a.m.•64 views

PRODSECBUG-2462: Remote code execution via file upload in admin import feature

More info at https://magento.com/security/patches/magento-2.3.3-and-2.2.10-security-update...

7.2CVSS7.2AI score0.01852EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2019/10/08 12:0 a.m.•64 views

PRODSECBUG-2402: Cross-Site Scripting via Attribute Set Name

More info at https://magento.com/security/patches/magento-2.3.3-and-2.2.10-security-update...

5.4CVSS7.2AI score0.00556EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2018/11/22 11:7 p.m.•64 views

XXE Vulnerability

This is: - X a bug report - a feature request - not a usage question ask them on https://stackoverflow.com/questions/tagged/phpspreadsheet or https://gitter.im/PHPOffice/PhpSpreadsheet What is the expected behavior? The securityScan function is used to prevent XXE attacks. What is the current...

8.8CVSS8.5AI score0.07791EPSS
Exploits4Affected Software1
Friends Of PHP
Friends Of PHP
•added 1970/01/01 12:0 a.m.•64 views

Cross-Site Scripting

I've picked up on the work started over at https://github.com/erusev/parsedown/pull/276 and rebased on erusev/master. Since this is rebased on master, I can't point at PR at naNuke/master without running into the merge conflicts that I've already resolved manually. I've implemented what I suggest...

6.1CVSS5.9AI score0.012EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2021/04/08 5:36 a.m.•63 views

Parsoid comment fostering allows for inserting mostly arbitrary <meta> tags

More info at https://phabricator.wikimedia.org/T279451...

4.3CVSS6.4AI score0.00981EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2020/12/31 7:20 p.m.•62 views

XSS Vulnerability in HTML Writer

This is: - X a bugfix - a new feature Checklist: - X Changes are covered by unit tests - X Code style is respected - X Commit message explains why the change is made see https://github.com/erlang/otp/wiki/Writing-good-commit-messages - X CHANGELOG.md contains a short summary of the change -...

7.1CVSS6.3AI score0.01301EPSS
Exploits1Affected Software1
Friends Of PHP
Friends Of PHP
•added 2023/06/12 5:7 p.m.•61 views

TYPO3-EXT-SA-2023-005: SQL Injection in extension "ipandlanguageredirect" (ipandlanguageredirect)

More info at https://typo3.org/security/advisory/typo3-ext-sa-2023-005...

9.8CVSS7.2AI score0.00509EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2019/06/25 12:0 a.m.•61 views

PRODSECBUG-2369: Stored cross-site scripting in the admin panel

More info at https://magento.com/security/patches/magento-2.3.2-2.2.9-and-2.1.18-security-update-23...

4.8CVSS7.2AI score0.00557EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2014/03/10 9:57 p.m.•61 views

PHP remote file inclusion vulnerability in dompdf.php

This release is superseded by version 0.7.0 This is a security-focused release that addresses a number of vulnerabilities that can expose your system to exploitation. In tandem with this release we have also posted a document to the wiki with advice for securing dompdf. Please read the new docume...

7.5CVSS7.2AI score0.39374EPSS
Exploits7Affected Software1
Friends Of PHP
Friends Of PHP
•added 2019/06/25 12:0 a.m.•60 views

PRODSECBUG-2378: Stored cross-site scripting in the Return Product comments feature

More info at https://magento.com/security/patches/magento-2.3.2-2.2.9-and-2.1.18-security-update-23...

5.4CVSS7.2AI score0.00566EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2014/07/29 11:19 a.m.•60 views

Fixed potential path traversal attack and remote code injection

This is a security release. All users MUST upgrade to this release to prevent two potential security issues: - path traversal attack - remote code injection These two security issues have been reported by Andreas Forsblom. THANKS! Below is the original report Andreas sent me: Hi William, First,...

7AI score0.0078EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 1970/01/01 12:0 a.m.•60 views

PHP Code Injection

phpWhois PHP Code Injection Vulnerability Overview phpWhois and some of its forks in versions before 5.1.0 are prone to a code injection vulnerability due to insufficient sanitization of returned WHOIS data. This allows attackers controlling the WHOIS information of a requested domain to execute...

9.8CVSS9.7AI score0.06195EPSS
Exploits1Affected Software1
Friends Of PHP
Friends Of PHP
•added 2024/06/08 9:3 a.m.•59 views

TYPO3-EXT-SA-2024-004: Broken Access Control in "Integration of Friendly Captcha" (friendlycaptcha_official)

More info at https://typo3.org/security/advisory/typo3-ext-sa-2024-004...

5.3CVSS6.9AI score0.0055EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2023/06/07 3:48 p.m.•57 views

Microweber Business Logic Errors

More info at https://nvd.nist.gov/vuln/detail/CVE-2023-6566...

6.5CVSS7.2AI score0.00487EPSS
Exploits1Affected Software1
Friends Of PHP
Friends Of PHP
•added 2020/12/08 7:18 p.m.•57 views

Deserialization Gadget chain in Swift Mailer

Summary Symfony 1 has a gadget chain due to vulnerable Swift Mailer dependency that would enable an attacker to get remote code execution if a developer unserialize user input in his project. Details This vulnerability present no direct threat but is a vector that will enable remote code executio...

9CVSS5.7AI score0.01485EPSS
Exploits1Affected Software1
Friends Of PHP
Friends Of PHP
•added 2019/10/08 12:0 a.m.•57 views

PRODSECBUG-2398: Cross-Site Scripting via Customer Attribute Labels

More info at https://magento.com/security/patches/magento-2.3.3-and-2.2.10-security-update...

5.4CVSS7.2AI score0.00556EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2019/06/25 12:0 a.m.•57 views

PRODSECBUG-2177: Insufficient server side validations leads to Insecure File upload vulnerability

More info at https://magento.com/security/patches/magento-2.3.2-2.2.9-and-2.1.18-security-update-13...

7.5CVSS7.2AI score0.02044EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 1970/01/01 12:0 a.m.•57 views

Attackers can trigger deserialization of arbitrary data via the phar:// wrapper.

Fix for security vulnerability: Using the phar:// wrapper it was possible to trigger the unserialization of user provided data...

9.8CVSS9.3AI score0.26172EPSS
Exploits7Affected Software1
Friends Of PHP
Friends Of PHP
•added 2019/11/13 8:0 a.m.•56 views

CVE-2019-11325: Fix escaping of strings in VarExporter

More info at https://symfony.com/cve-2019-11325...

9.8CVSS7.2AI score0.03354EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2019/06/25 12:0 a.m.•56 views

PRODSECBUG-2301: Names of disabled products can be leaked due to inadequate validation checks

More info at https://magento.com/security/patches/magento-2.3.2-2.2.9-and-2.1.18-security-update-33...

5.3CVSS7.2AI score0.00928EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 1970/01/01 12:0 a.m.•56 views

PHPMemcachedAdmin vulnerable to cross-site scripting (XSS) via improper encoding

More info at https://nvd.nist.gov/vuln/detail/CVE-2023-6027...

6.1CVSS7.2AI score0.00406EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2024/04/24 12:2 p.m.•55 views

mdanter/ecc affected by timing vulnerability in cryptographic side-channels

phpecc, as used in all versions of mdanter/ecc, as well as paragonie/ecc before 2.0.1, has a branch-based timing leak in Point addition. This Composer package is also known as phpecc/phpecc on GitHub, previously known as the Matyas Danter ECC library. Paragon Initiative Enterprises hard-forked...

4.3CVSS4.5AI score0.00408EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2021/03/17 12:32 a.m.•55 views

CVE-2021-27938: XSS in CreateQueuedJobTask

More info at https://www.silverstripe.org/download/security-releases/cve-2021-27938...

6.1CVSS7.2AI score0.00751EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2019/06/25 12:0 a.m.•55 views

PRODSECBUG-2371: Stored cross-site scripting in the admin panel

More info at https://magento.com/security/patches/magento-2.3.2-2.2.9-and-2.1.18-security-update-23...

4.8CVSS7.2AI score0.00557EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2019/06/25 12:0 a.m.•55 views

PRODSECBUG-2353: Stored cross-site scripting in the admin panel

More info at https://magento.com/security/patches/magento-2.3.2-2.2.9-and-2.1.18-security-update-23...

4.8CVSS7.2AI score0.00557EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2018/02/12 7:47 p.m.•55 views

HTTP Proxy header vulnerability

Bugfixes Mitigate HTTPoxy vulnerability 23...

5.1CVSS0.4AI score0.50427EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2014/07/29 11:19 a.m.•55 views

Fixed potential path traversal attack and remote code injection

This is a security release. All users MUST upgrade to this release to prevent two potential security issues: path traversal attack remote code injection These two security issues have been reported by Andreas Forsblom. THANKS! Below is the original report Andreas sent me: Hi William, First, thank...

1.6AI score0.0078EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2025/05/18 9:8 p.m.•54 views

TYPO3-EXT-SA-2025-004: Insecure Direct Object Reference in extension "Download manager" (reint_downloadmanager)

More info at https://typo3.org/security/advisory/typo3-ext-sa-2025-004...

8.6CVSS7.2AI score0.00301EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2022/06/13 1:40 p.m.•54 views

Cross-Site Scripting

More info at https://typo3.org/security/advisory/typo3-ext-sa-2022-011...

6.1CVSS7.2AI score0.00541EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2019/10/08 12:0 a.m.•54 views

PRODSECBUG-2401: Cross-Site Scripting via Customer Attribute Option Value

More info at https://magento.com/security/patches/magento-2.3.3-and-2.2.10-security-update...

5.4CVSS7.2AI score0.00556EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2019/06/25 12:0 a.m.•54 views

PRODSECBUG-2095: Defense-in-depth session validation check implemented

More info at https://magento.com/security/patches/magento-2.3.2-2.2.9-and-2.1.18-security-update-33...

7.5CVSS7.2AI score0.01151EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
•added 2019/06/25 12:0 a.m.•53 views

PRODSECBUG-2270: Reflected cross-site scripting in the admin panel

More info at https://magento.com/security/patches/magento-2.3.2-2.2.9-and-2.1.18-security-update-23...

4.8CVSS7.2AI score0.00557EPSS
Exploits0Affected Software1
Total number of security vulnerabilities1702