Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php 5.2.3 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-4255
Buffer overflow in the mSQL extension in PHP 5.2.3 allows context-dependent malicious users to execute arbitrary code via a long first argument to the msql_connect function.
Php Php 5.2.3
2 EDB exploits
7.5
CVSSv2
CVE-2007-3294
Multiple buffer overflows in libtidy, as used in the Tidy extension for PHP 5.2.3 and possibly other products, allow context-dependent malicious users to execute arbitrary code via (1) a long second argument to the tidy_parse_string function or (2) an unspecified vector to the ti...
Php Php 5.2.3
1 EDB exploit
6.8
CVSSv2
CVE-2007-3806
The glob function in PHP 5.2.3 allows context-dependent malicious users to cause a denial of service and possibly execute arbitrary code via an invalid value of the flags parameter, probably related to memory corruption or an invalid read on win32 platforms, and possibly related ...
Php Php 5.2.3
1 EDB exploit
1 Github repository
6.8
CVSSv2
CVE-2007-4010
The win32std extension in PHP 5.2.3 does not follow safe_mode and disable_functions restrictions, which allows remote malicious users to execute arbitrary commands via the win_shell_execute function.
Php Php 5.2.3
1 EDB exploit
7.5
CVSSv2
CVE-2007-4661
The chunk_split function in string.c in PHP 5.2.3 does not properly calculate the needed buffer size due to precision loss when performing integer arithmetic with floating point numbers, which has unknown attack vectors and impact, possibly resulting in a heap-based buffer overfl...
Php Php 5.2.3
6.8
CVSSv2
CVE-2007-4507
Multiple buffer overflows in the php_ntuser component for PHP 5.2.3 allow context-dependent malicious users to cause a denial of service or execute arbitrary code via long arguments to the (1) ntuser_getuserlist, (2) ntuser_getuserinfo, (3) ntuser_getusergroups, or (4) ntuser_get...
Php Php 5.2.3
1 EDB exploit
5.8
CVSSv2
CVE-2007-3790
The com_print_typeinfo function in the bz2 extension in PHP 5.2.3 allows context-dependent malicious users to cause a denial of service via a long argument.
Php Php 5.2.3
1 EDB exploit
7.5
CVSSv2
CVE-2007-4033
Buffer overflow in the intT1_EnvGetCompletePath function in lib/t1lib/t1env.c in t1lib 5.1.1 allows context-dependent malicious users to execute arbitrary code via a long FileName parameter. NOTE: this issue was originally reported to be in the imagepsloadfont function in php_gd2...
T1lib T1lib 5.1.1
Php Php 5.2.3
2 EDB exploits
5
CVSSv2
CVE-2009-1272
The php_zip_make_relative_path function in php_zip.c in PHP 5.2.x prior to 5.2.9 allows context-dependent malicious users to cause a denial of service (crash) via a ZIP file that contains filenames with relative paths, which is not properly handled during extraction.
Php Php 5.2.5
Php Php 5.2.0
Php Php 5.2.2
Php Php 5.2.7
Php Php 5.2.4
Php Php 5.2.6
Php Php 5.2.8
Php Php 5.2.3
Php Php 5.2.1
5
CVSSv2
CVE-2009-1271
The JSON_parser function (ext/json/JSON_parser.c) in PHP 5.2.x prior to 5.2.9 allows remote malicious users to cause a denial of service (segmentation fault) via a malformed string to the json_decode API function.
Php Php 5.2.4
Php Php 5.2.3
Php Php 5.2.1
Php Php 5.2.2
Php Php 5.2.5
Php Php 5.2.7
Php Php 5.2.6
Php Php 5.2.0
Php Php 5.2.8
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »