Vulnerabilities > PHP > PHP > 3.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-05-16 | CVE-2002-0229 | Unspecified vulnerability in PHP Safe Mode feature (safe_mode) in PHP 3.0 through 4.1.0 allows attackers with access to the MySQL database to bypass Safe Mode access restrictions and read arbitrary files using "LOAD DATA INFILE LOCAL" SQL statements. | 7.5 |
2002-03-08 | CVE-2002-0081 | Buffer Overflow vulnerability in PHP Post File Upload Buffer overflows in (1) php_mime_split in PHP 4.1.0, 4.1.1, and 4.0.6 and earlier, and (2) php3_mime_split in PHP 3.0.x allows remote attackers to execute arbitrary code via a multipart/form-data HTTP POST request when file_uploads is enabled. | 7.5 |
2000-12-19 | CVE-2000-0967 | Unspecified vulnerability in PHP 3.0/4.0 PHP 3 and 4 do not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands by triggering error messages that are improperly written to the error logs. | 10.0 |
2000-11-14 | CVE-2000-0860 | Unspecified vulnerability in PHP The file upload capability in PHP versions 3 and 4 allows remote attackers to read arbitrary files by setting hidden form fields whose names match the names of internal PHP script variables. | 5.0 |
2000-01-04 | CVE-2000-0059 | Unspecified vulnerability in PHP PHP3 with safe_mode enabled does not properly filter shell metacharacters from commands that are executed by popen, which could allow remote attackers to execute commands. | 10.0 |