Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php 3.0 vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2000-0967
PHP 3 and 4 do not properly cleanse user-injected format strings, which allows remote malicious users to execute arbitrary commands by triggering error messages that are improperly written to the error logs.
Php Php 3.0
Php Php 4.0
2 EDB exploits
668
VMScore
CVE-2002-0081
Buffer overflows in (1) php_mime_split in PHP 4.1.0, 4.1.1, and 4.0.6 and previous versions, and (2) php3_mime_split in PHP 3.0.x allows remote malicious users to execute arbitrary code via a multipart/form-data HTTP POST request when file_uploads is enabled.
Php Php 3.0
Php Php 4.0.6
Php Php 4.1.0
Php Php 4.1.1
605
VMScore
CVE-2006-6769
Multiple cross-site scripting (XSS) vulnerabilities in PHP Live! 3.2.2 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) search_string parameter in (a) setup/transcripts.php, the (2) l parameter in (b) index.php, the (3) login f...
Php Live Php Live
Php Live Php Live 2.8.1
Php Live Php Live 3.0
1000
VMScore
CVE-2000-0059
PHP3 with safe_mode enabled does not properly filter shell metacharacters from commands that are executed by popen, which could allow remote malicious users to execute commands.
Php Php 3.0
Php Php 3.0.1
Php Php 3.0.10
Php Php 3.0.3
Php Php 3.0.4
Php Php 3.0.5
Php Php 3.0.6
Php Php 3.0.11
Php Php 3.0.13
Php Php 3.0.8
Php Php 3.0.12
Php Php 3.0.2
Php Php 3.0.7
Php Php 3.0.9
1 EDB exploit
505
VMScore
CVE-2002-0484
move_uploaded_file in PHP does not does not check for the base directory (open_basedir), which could allow remote malicious users to upload files to unintended locations on the system.
Php Php 3.0.11
Php Php 3.0.12
Php Php 3.0.3
Php Php 3.0.4
Php Php 4.0.1
Php Php 4.0.6
Php Php 4.0.7
Php Php 3.0.1
Php Php 3.0.10
Php Php 3.0.17
Php Php 3.0.18
Php Php 3.0.2
Php Php 3.0.9
Php Php 4.0
Php Php 4.0.4
Php Php 4.0.5
Php Php 4.1.2
Php Php 3.0
Php Php 3.0.15
Php Php 3.0.16
Php Php 3.0.7
Php Php 3.0.8
1 EDB exploit
445
VMScore
CVE-2000-0860
The file upload capability in PHP versions 3 and 4 allows remote malicious users to read arbitrary files by setting hidden form fields whose names match the names of internal PHP script variables.
Php Php 3.0.1
Php Php 3.0.10
Php Php 3.0.5
Php Php 3.0.11
Php Php 3.0.12
Php Php 3.0.7
Php Php 3.0.8
Php Php 3.0.9
Php Php 1.0
Php Php 2.0
Php Php 3.0.13
Php Php 3.0.2
Php Php 4.0
Php Php 3.0.6
Php Php 2.0b10
Php Php 3.0
Php Php 3.0.3
Php Php 3.0.4
785
VMScore
CVE-2002-2309
php.exe in PHP 3.0 up to and including 4.2.2, when running on Apache, does not terminate properly, which allows remote malicious users to cause a denial of service via a direct request without arguments.
Php Php 3.0.1
Php Php 3.0.11
Php Php 3.0.16
Php Php 3.0.18
Php Php 3.0.8
Php Php 4.0
Php Php 4.0.4
Php Php 4.0.6
Php Php 4.1.0
Php Php 4.1.2
Php Php 4.2.1
Php Php 3.0.12
Php Php 3.0.13
Php Php 3.0.14
Php Php 3.0.15
Php Php 4.0.1
Php Php 4.0.2
Php Php 4.0.3
Php Php 4.2.2
Php Php 3.0.3
Php Php 3.0.4
Php Php 3.0.5
1 EDB exploit
765
VMScore
CVE-2002-0229
Safe Mode feature (safe_mode) in PHP 3.0 up to and including 4.1.0 allows attackers with access to the MySQL database to bypass Safe Mode access restrictions and read arbitrary files using "LOAD DATA INFILE LOCAL" SQL statements.
Php Php 3.0.13
Php Php 3.0.16
Php Php 3.0.8
Php Php 3.0.9
Php Php 4.1.0
Php Php 4.1.2
Php Php 3.0.1
Php Php 3.0.10
Php Php 3.0.4
Php Php 3.0.5
Php Php 4.0.3
Php Php 4.0.4
Php Php 3.0.11
Php Php 3.0.12
Php Php 3.0.6
Php Php 3.0.7
Php Php 4.0.5
Php Php 4.0.6
Php Php 3.0
Php Php 3.0.2
Php Php 3.0.3
Php Php 4.0
3 EDB exploits
435
VMScore
CVE-2002-1929
Cross-site scripting (XSS) vulnerability in pafiledb.php in PHP Arena paFileDB 1.1.3 up to and including 3.0 allows remote malicious users to inject arbitrary web script or HTML via the query string in the (1) rate, (2) email, or (3) download actions.
Php Arena Pafiledb 3.0
Php Arena Pafiledb 1.1.3
Php Arena Pafiledb 2.1.1
1 EDB exploit
435
VMScore
CVE-2004-1975
Cross-site scripting (XSS) vulnerability in the category module in pafiledb.php for paFileDB 3.1 allows remote malicious users to inject arbitrary web script or HTML via the id parameter, a vulnerability that is closely related to CVE-2004-1551.
Php Arena Pafiledb 3.0
Php Arena Pafiledb 3.0 Beta 3.1
Php Arena Pafiledb 3.1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-26978
CVE-2024-26982
wireless
CVE-2023-6949
CVE-2024-26980
CVE-2024-32766
CVE-2024-26939
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »