CVE-2010-3294

CVE-2010-3294 is a cross-site scripting vulnerability in the APC project’s apc.php (APC extension for PHP) present before version 3.1.4. The vulnerability enables remote attackers to inject arbitrary script/HTML via unspecified vectors. Publicly cited fixes include upgrading the APC package to ve...

CVE-2008-1488

CVE-2008-1488 affects Alternative PHP Cache (APC) 3.0.11–3.0.16, with a stack-based buffer overflow in apc.c triggered by a long filename. This allows remote code execution. Fedora/Red Hat advisories and Gentoo/OpenVAS notes recommend upgrading APC to a fixed release (e.g., APC 3.0.19 and later) ...