'

Vulnerability Component — PHP

Detail:
PHP是广泛使用的通用目的脚本语言,特别适合于Web开发,可嵌入到HTML中。 PHP 是一种服务器端的,嵌入HTML的脚本语言。PHP区别其他像客户端Javascript的地方是它的代码在服务器端执行. 面是当前支持的数据库:   Adabas D InterBase Solid   dBase mSQL Sybase   Empress MySQL Velocis   FilePro Oracle Unix dbm   Informix PostgreSQL   PHP通过协议也支持与其他服务的"交谈",像IMAP, SNMP, NNTP, POP3, 甚至是 HTTP. 你也可以打开晦涩的 网络接口和其他协议交互.

Related Vulnerabilities

SSV ID Name
SSV-87514 PHP chdir ftok函数可能导致绕过safe_mode
SSV-87512 PHP imageRotate 函数信息泄露漏洞
SSV-87511 PHP php_openssl_apply_verification_policy 函数登录绕过
SSV-87508 PHP FastCgi 漏洞导致栈溢出
SSV-87509 PHP open_basedir 权限检查绕过漏洞
SSV-87507 PHP PCRE 模块导致远程执行任意代码
SSV-87506 PHP init_request_info 导致远程执行任意代码
SSV-87544 PHP memory_limit 环境变量导致远程执行代码
SSV-87505 PHP 4.0.3 IMAP模块缓冲区溢出
SSV-87502 PHP 5.3.0 ini_restore 函数导致内存信息泄露
SSV-14997 PHP ini_restore()内存信息泄露漏洞
SSV-14994 PHP proc_open()绕过safe_mode_protected_env_var限制漏洞
SSV-14996 PHP tempname()函数绕过safe_mode安全限制漏洞
SSV-14958 PHP "multipart/form-data" denial of service
SSV-14324 PHP 5.2.11/5.3.0 Multiple Vulnerabilities
SSV-12598 Php pdflib扩展绕过open_basedir安全限制漏洞
SSV-12590 Php 5.3.0 pdflib extension open_basedir bypass
SSV-14466 PHP 5.3.0 pdflib Arbitrary File Write
SSV-14413 PHP 5.3.0 pdflib file disclosure
SSV-12410 PHP preg_match()函数信息泄露漏洞
SSV-12407 PHP mysqli_real_escape_string()函数信息泄露漏洞
SSV-14335 PHP <=5.3 - preg_match() full path disclosure
SSV-12389 PHP 5.2.11版本修复多个安全漏洞
SSV-12357 PHP 5.2.10及之前版本存在多个安全漏洞
SSV-12194 PHP Live! 3.3 (deptid) Remote SQL Injection Vulnerability
SSV-12108 PHP Dir Submit (aid) Remote SQL Injection Vulnerability
SSV-14626 PHP Email Manager (remove.php ID) SQL Injection Vulnerability
SSV-12064 PHP Competition System <= 0.84 (competition) SQL Injection Vuln
SSV-14746 PHP Paid 4 Mail Script (paidbanner.php ID) SQL Injection Vulnerability
SSV-14760 PHP Paid 4 Mail Script (home.php page) Remote File Inclusion Vuln
SSV-11886 PHP Live! 3.2.1/2 (x) Remote Blind SQL Injection Exploit
SSV-14785 PHP Melody 1.5.3 Remote File Upload Injection Vulnerability
SSV-14819 PHP Live! 3.2.1/2 (x) Remote Blind SQL Injection Vulnerability
SSV-11801 Php AdminPanel Free version 1.0.5 Remote File Disclosure Vuln
SSV-11427 PHP <= 5.2.9 Local Safemod Bypass Exploit (win32)
SSV-11386 PHP Article Publisher Arbitrary Auth Bypass Vulnerability
SSV-11337 PHP Dir Submit (Auth Bypass) SQL Injection Vulnerability
SSV-11267 Php Recommend <= 1.3 (AB/RFI/CI) Multiple Remote Vulnerabilities
SSV-11232 PHP mb_ereg(i)_replace() Evaluate Replacement String Vulnerability
SSV-11198 PHP Site Lock 2.0 Insecure Cookie Handling Vulnerability
SSV-5044 PHP cURL safe_mode和open_basedir绕过安全限制漏洞
SSV-10795 PHP Director <= 0.21 (sql into outfile) eval() Injection Exploit
SSV-10610 PHP Krazy Image Host Script 1.01 (viewer.php id) SQL Injection Vuln
SSV-10589 PHP Director <= 0.21 Remote Command Execution Exploit
SSV-4657 PHP popen()函数缓冲区溢出漏洞
SSV-10483 Php Photo Album 0.8b (index.php preview) Local File Inclusion Vulnerability
SSV-4625 PHP iCalendar Cookie处理绕过认证漏洞
SSV-4624 PHP FILTER_UNSAFE_RAW过滤器失效漏洞
SSV-10377 PHP <= 5.2.8 gd library - imageRotate() Information Leak Vulnerability
SSV-4604 PHP imageRotate()未初始化内存信息泄露漏洞
SSV-4590 PHP 'mbstring扩展缓冲区溢出漏洞
SSV-10269 PHP python extension safe_mode Bypass Local Vulnerability
SSV-10249 PHP Weather 2.2.2 (LFI/XSS) Multiple Remote Vulnerabilities
SSV-4539 PHP 'chdir()' and 'ftok()' 安全模式绕过漏洞
SSV-4538 PHP 'rfc822_write_address()' 功能缓冲区溢出漏洞
SSV-4541 PHP 'error_log' 安全模式绕过漏洞
SSV-4540 PHP 5 'posix_access()'功安全模式绕过目录遍历漏洞
SSV-10217 PHP Multiple Newsletters 2.7 (LFI/XSS) Multiple Vulnerabilities
SSV-10211 PHP safe_mode bypass via proc_open() and custom environment
SSV-4543 PHP SAPI 'php_getuid()' 安全模式绕过漏洞
SSV-4530 PHP ZipArchive::extractTo()函数.zip文件目录遍历漏洞
SSV-10140 PHP TV Portal 2.0 (index.php mid) SQL Injection Vulnerability
SSV-4482 PHP error_log绕过安全模式限制漏洞
SSV-10079 PHP 5.2.6 (error_log) safe_mode Bypass Vulnerability
SSV-9974 PHP Auto Listings Script (Auth Bypass) SQL Injection Vuln
SSV-9952 PHP JOBWEBSITE PRO (Auth Bypass) SQL Injection Vulnerability
SSV-9950 PHP Auto Listings (moreinfo.php pg) SQL Injection Vulnerability
SSV-9758 PHP Easy Downloader <= 1.5 Remote File Creation Exploit
SSV-9743 PHP Easy Downloader 1.5 (file) File Disclosure Vulnerability
SSV-4174 PHP FastCGI模块文件扩展拒绝服务漏洞
SSV-4152 PHP MySQL_Connect远程溢出漏洞
SSV-4114 PHP 'create_function()'代码注入漏洞
SSV-9584 PHP infoBoard v.7 Plus Insecure Cookie Handling Vulnerability
SSV-9582 PHP infoBoard v.7 Plus Multiple Remote Vulnerabilities
SSV-9548 PHP iCalendar <= 2.24 (cookie_language) LFI / File Upload Exploit
SSV-4071 PHP Crawler 'footer.php'远程文件包含漏洞
SSV-3970 PHP Coupon Script 'index.php' SQL注入漏洞
SSV-9315 PHP Live Helper <= 2.0.1 Multiple Remoet Vulnerabilities
SSV-3839 PHP Realty 'dpage.php' SQL注入漏洞
SSV-9210 PHP Hosting Directory 2.0 Insecure Cookie Handling Vulnerability
SSV-9207 PHP Hosting Directory 2.0 (admin.php rd) RFI Vulnerability
SSV-9051 php Help Agent <= 1.1 (content) Local File Inclusion Vulnerability
SSV-9086 PHP (php-exec-dir) Patch Command Access Restriction Bypass
SSV-3464 PHP 5 'chdir()'和'ftok()' 'safe_mode'安全绕过漏洞
SSV-3465 PHP 5 'posix_access()'函数'safe_mode'绕过目录遍历漏洞
SSV-3450 PHP rfc822_write_address()函数缓冲区溢出漏洞
SSV-8794 PHP KnowledgeBase Script 2.4 (cat_id) SQL Injection Vulnerability
SSV-3444 PHP 5 posix_access()函数绕过safe_mode限制漏洞
SSV-3445 PHP chdir()和ftok()函数绕过safe_mode限制漏洞
SSV-8732 PHP JOBWEBSITE PRO (JobSearch3.php) SQL Injection Vulnerability
SSV-8661 PHP <= 4.3.7 openlog() Buffer Overflow Exploit
SSV-8650 PHP <= 4.3.7/ 5.0.0RC3 memory_limit Remote Exploit
SSV-8534 PHP Visit Counter <= 0.4 (datespan) SQL Injection Vulnerability
SSV-8522 PHP Booking Calendar 10 d (fckeditor) Arbitrary File Upload Exploit
SSV-8523 PHP Booking Calendar 10 d Remote SQL Injection Exploit
SSV-8509 PHP 5.2.6 sleep() Local Memory Exhaust Exploit
SSV-8498 Php Jokesite 2.0 (cat_id) Remote SQL Injection Vulnerability
SSV-8485 PHP AGTC-Membership System <= 1.1a Arbitrary Add-Admin Exploit
SSV-8447 PHP Classifieds Script <= 05122008 SQL Injection Vulnerabilities
SSV-3253 PHP 5.2.6修复多个安全漏洞
京ICP备10040895号 京公网安备 11010502034610号 Copyright @ 404 Team from Knownsec. 简体中文