Vulnerabilities > PHP > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-06-20 | CVE-2008-2665 | Path Traversal vulnerability in PHP 5.2.6 Directory traversal vulnerability in the posix_access function in PHP 5.2.6 and earlier allows remote attackers to bypass safe_mode restrictions via a .. | 5.0 |
| 2008-03-27 | CVE-2008-1384 | Numeric Errors vulnerability in PHP Integer overflow in PHP 5.2.5 and earlier allows context-dependent attackers to cause a denial of service and possibly have unspecified other impact via a printf format parameter with a large width specifier, related to the php_sprintf_appendstring function in formatted_print.c and probably other functions for formatted strings (aka *printf functions). | 5.0 |
| 2008-01-25 | CVE-2007-4850 | Permissions, Privileges, and Access Controls vulnerability in PHP 5.2.4/5.2.5 curl/interface.c in the cURL library (aka libcurl) in PHP 5.2.4 and 5.2.5 allows context-dependent attackers to bypass safe_mode and open_basedir restrictions and read arbitrary files via a file:// request containing a \x00 sequence, a different vulnerability than CVE-2006-2563. | 5.0 |
| 2007-12-21 | CVE-2007-6512 | Permissions, Privileges, and Access Controls vulnerability in PHP Mysql Banner Exchange 2.2.1 PHP MySQL Banner Exchange 2.2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain database information via a direct request to inc/lib.inc. | 5.0 |
| 2007-11-20 | CVE-2007-5899 | Information Exposure vulnerability in PHP The output_add_rewrite_var function in PHP before 5.2.5 rewrites local forms in which the ACTION attribute references a non-local URL, which allows remote attackers to obtain potentially sensitive information by reading the requests for this URL, as demonstrated by a rewritten form containing a local session ID. | 4.3 |
| 2007-11-20 | CVE-2007-5900 | Permissions, Privileges, and Access Controls vulnerability in PHP PHP before 5.2.5 allows local users to bypass protection mechanisms configured through php_admin_value or php_admin_flag in httpd.conf by using ini_set to modify arbitrary configuration variables, a different issue than CVE-2006-4625. | 6.9 |
| 2007-11-20 | CVE-2007-5898 | Unspecified vulnerability in PHP The (1) htmlentities and (2) htmlspecialchars functions in PHP before 5.2.5 accept partial multibyte sequences, which has unknown impact and attack vectors, a different issue than CVE-2006-5465. | 6.4 |
| 2007-10-14 | CVE-2007-5447 | Permissions, Privileges, and Access Controls vulnerability in multiple products ioncube_loader_win_5.2.dll in the ionCube Loader 6.5 extension for PHP 5.2.4 does not follow safe_mode and disable_functions restrictions, which allows context-dependent attackers to bypass intended limitations, as demonstrated by reading arbitrary files via the ioncube_read_file function. | 4.3 |
| 2007-09-27 | CVE-2007-5128 | Improper Input Validation vulnerability in multiple products SimpNews 2.41.03 on Windows, when PHP before 5.0.0 is used, allows remote attackers to obtain sensitive information via an certain link_date parameter to events.php, which reveals the path in an error message due to an unsupported argument type for the mktime function on Windows. | 5.0 |
| 2007-09-14 | CVE-2007-4889 | Security Bypass vulnerability in PHP The MySQL extension in PHP 5.2.4 and earlier allows remote attackers to bypass safe_mode and open_basedir restrictions via the MySQL (1) LOAD_FILE, (2) INTO DUMPFILE, and (3) INTO OUTFILE functions, a different issue than CVE-2007-3997. network php | 6.8 |