Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php 3.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-0081
Buffer overflows in (1) php_mime_split in PHP 4.1.0, 4.1.1, and 4.0.6 and previous versions, and (2) php3_mime_split in PHP 3.0.x allows remote malicious users to execute arbitrary code via a multipart/form-data HTTP POST request when file_uploads is enabled.
Php Php 3.0
Php Php 4.0.6
Php Php 4.1.0
Php Php 4.1.1
NA
CVE-2000-0967
PHP 3 and 4 do not properly cleanse user-injected format strings, which allows remote malicious users to execute arbitrary commands by triggering error messages that are improperly written to the error logs.
Php Php 3.0
Php Php 4.0
2 EDB exploits
NA
CVE-2006-6769
Multiple cross-site scripting (XSS) vulnerabilities in PHP Live! 3.2.2 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) search_string parameter in (a) setup/transcripts.php, the (2) l parameter in (b) index.php, the (3) login f...
Php Live Php Live
Php Live Php Live 2.8.1
Php Live Php Live 3.0
NA
CVE-2000-0059
PHP3 with safe_mode enabled does not properly filter shell metacharacters from commands that are executed by popen, which could allow remote malicious users to execute commands.
Php Php 3.0
Php Php 3.0.1
Php Php 3.0.10
Php Php 3.0.3
Php Php 3.0.4
Php Php 3.0.5
Php Php 3.0.6
Php Php 3.0.11
Php Php 3.0.13
Php Php 3.0.8
Php Php 3.0.12
Php Php 3.0.2
Php Php 3.0.7
Php Php 3.0.9
1 EDB exploit
NA
CVE-2002-0484
move_uploaded_file in PHP does not does not check for the base directory (open_basedir), which could allow remote malicious users to upload files to unintended locations on the system.
Php Php 3.0.11
Php Php 3.0.12
Php Php 3.0.3
Php Php 3.0.4
Php Php 4.0.1
Php Php 4.0.6
Php Php 4.0.7
Php Php 3.0.1
Php Php 3.0.10
Php Php 3.0.17
Php Php 3.0.18
Php Php 3.0.2
Php Php 3.0.9
Php Php 4.0
Php Php 4.0.4
Php Php 4.0.5
Php Php 4.1.2
Php Php 3.0
Php Php 3.0.15
Php Php 3.0.16
Php Php 3.0.7
Php Php 3.0.8
1 EDB exploit
NA
CVE-2000-0860
The file upload capability in PHP versions 3 and 4 allows remote malicious users to read arbitrary files by setting hidden form fields whose names match the names of internal PHP script variables.
Php Php 3.0.1
Php Php 3.0.10
Php Php 3.0.5
Php Php 3.0.11
Php Php 3.0.12
Php Php 3.0.7
Php Php 3.0.8
Php Php 3.0.9
Php Php 1.0
Php Php 2.0
Php Php 3.0.13
Php Php 3.0.2
Php Php 4.0
Php Php 3.0.6
Php Php 2.0b10
Php Php 3.0
Php Php 3.0.3
Php Php 3.0.4
NA
CVE-2002-2309
php.exe in PHP 3.0 up to and including 4.2.2, when running on Apache, does not terminate properly, which allows remote malicious users to cause a denial of service via a direct request without arguments.
Php Php 3.0.1
Php Php 3.0.11
Php Php 3.0.16
Php Php 3.0.18
Php Php 3.0.8
Php Php 4.0
Php Php 4.0.4
Php Php 4.0.6
Php Php 4.1.0
Php Php 4.1.2
Php Php 4.2.1
Php Php 3.0.12
Php Php 3.0.13
Php Php 3.0.14
Php Php 3.0.15
Php Php 4.0.1
Php Php 4.0.2
Php Php 4.0.3
Php Php 4.2.2
Php Php 3.0.3
Php Php 3.0.4
Php Php 3.0.5
1 EDB exploit
NA
CVE-2002-0229
Safe Mode feature (safe_mode) in PHP 3.0 up to and including 4.1.0 allows attackers with access to the MySQL database to bypass Safe Mode access restrictions and read arbitrary files using "LOAD DATA INFILE LOCAL" SQL statements.
Php Php 3.0.13
Php Php 3.0.16
Php Php 3.0.8
Php Php 3.0.9
Php Php 4.1.0
Php Php 4.1.2
Php Php 3.0.1
Php Php 3.0.10
Php Php 3.0.4
Php Php 3.0.5
Php Php 4.0.3
Php Php 4.0.4
Php Php 3.0.11
Php Php 3.0.12
Php Php 3.0.6
Php Php 3.0.7
Php Php 4.0.5
Php Php 4.0.6
Php Php 3.0
Php Php 3.0.2
Php Php 3.0.3
Php Php 4.0
3 EDB exploits
NA
CVE-2002-1929
Cross-site scripting (XSS) vulnerability in pafiledb.php in PHP Arena paFileDB 1.1.3 up to and including 3.0 allows remote malicious users to inject arbitrary web script or HTML via the query string in the (1) rate, (2) email, or (3) download actions.
Php Arena Pafiledb 3.0
Php Arena Pafiledb 1.1.3
Php Arena Pafiledb 2.1.1
1 EDB exploit
NA
CVE-2004-1975
Cross-site scripting (XSS) vulnerability in the category module in pafiledb.php for paFileDB 3.1 allows remote malicious users to inject arbitrary web script or HTML via the id parameter, a vulnerability that is closely related to CVE-2004-1551.
Php Arena Pafiledb 3.0
Php Arena Pafiledb 3.0 Beta 3.1
Php Arena Pafiledb 3.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »