Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php 3.0.12 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-4557
The Security Screen (_core_/securite/ecran_securite.php) prior to 1.1.8 for SPIP, as used in SPIP 3.0.x prior to 3.0.12, allows remote malicious users to execute arbitrary PHP via the connect parameter.
Spip Spip 3.0.3
Spip Spip 3.0.8
Spip Spip 3.0.4
Spip Spip 3.0.7
Spip Spip 3.0.5
Spip Spip 3.0.10
Spip Spip 3.0.9
Spip Spip 3.0.2
Spip Spip 3.0.0
Spip Spip 3.0.6
Spip Spip 3.0.11
Spip Spip 3.0.1
NA
CVE-2013-4556
Cross-site scripting (XSS) vulnerability in the author page (prive/formulaires/editer_auteur.php) in SPIP prior to 2.1.24 and 3.0.x prior to 3.0.12 allows remote malicious users to inject arbitrary web script or HTML via the url_site parameter.
Spip Spip 2.1.15
Spip Spip 3.0.3
Spip Spip 2.1.8
Spip Spip 2.0.0
Spip Spip 2.0.3
Spip Spip 2.0.6
Spip Spip 2.0.10
Spip Spip 3.0.8
Spip Spip 2.1.17
Spip Spip 2.0.19
Spip Spip
Spip Spip 2.1.4
Spip Spip 3.0.4
Spip Spip 3.0.7
Spip Spip 2.1.19
Spip Spip 2.0.12
Spip Spip 2.1.2
Spip Spip 2.0.16
Spip Spip 2.1.18
Spip Spip 2.1.5
Spip Spip 2.1.13
Spip Spip 2.1.16
NA
CVE-2013-4555
Cross-site request forgery (CSRF) vulnerability in ecrire/action/logout.php in SPIP prior to 2.1.24 allows remote malicious users to hijack the authentication of arbitrary users for requests that logout the user via unspecified vectors.
Spip Spip 2.1.15
Spip Spip 2.1.8
Spip Spip 2.0.0
Spip Spip 2.0.3
Spip Spip 2.0.6
Spip Spip 2.0.10
Spip Spip 2.1.17
Spip Spip 2.0.19
Spip Spip
Spip Spip 2.1.4
Spip Spip 2.1.19
Spip Spip 2.0.12
Spip Spip 2.1.2
Spip Spip 2.0.16
Spip Spip 2.1.18
Spip Spip 2.1.5
Spip Spip 2.1.13
Spip Spip 2.1.16
Spip Spip 2.1.22
Spip Spip 2.1.10
Spip Spip 2.0.7
Spip Spip 2.1.7
NA
CVE-2013-4635
Integer overflow in the SdnToJewish function in jewish.c in the Calendar component in PHP prior to 5.3.26 and 5.4.x prior to 5.4.16 allows context-dependent malicious users to cause a denial of service (application hang) via a large argument to the jdtojewish function.
Php Php 4.3.9
Php Php 4.4.9
Php Php 3.0
Php Php 5.2.9
Php Php 4.0
Php Php 3.0.5
Php Php 3.0.11
Php Php 5.3.10
Php Php 5.1.5
Php Php 5.3.6
Php Php 5.3.9
Php Php 5.1.2
Php Php 5.3.1
Php Php 4.2.0
Php Php 5.1.1
Php Php 3.0.1
Php Php 5.3.18
Php Php 5.2.14
Php Php 3.0.2
Php Php 4.4.4
Php Php 5.0.0
Php Php 4.1.0
NA
CVE-2013-2110
Heap-based buffer overflow in the php_quot_print_encode function in ext/standard/quot_print.c in PHP prior to 5.3.26 and 5.4.x prior to 5.4.16 allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted ar...
Php Php 4.3.9
Php Php 4.4.9
Php Php 3.0
Php Php 5.2.9
Php Php 4.0
Php Php 3.0.5
Php Php 3.0.11
Php Php 5.3.10
Php Php 5.1.5
Php Php 5.3.6
Php Php 5.3.9
Php Php 5.1.2
Php Php 5.3.1
Php Php 4.2.0
Php Php 5.1.1
Php Php 3.0.1
Php Php 5.3.18
Php Php 5.2.14
Php Php 3.0.2
Php Php 4.4.4
Php Php 5.0.0
Php Php 4.1.0
NA
CVE-2013-1635
ext/soap/soap.c in PHP prior to 5.3.22 and 5.4.x prior to 5.4.13 does not validate the relationship between the soap.wsdl_cache_dir directive and the open_basedir directive, which allows remote malicious users to bypass intended access restrictions by triggering the creation of c...
Php Php 4.3.9
Php Php 4.4.9
Php Php 3.0
Php Php
Php Php 5.2.9
Php Php 4.0
Php Php 3.0.5
Php Php 3.0.11
Php Php 5.3.10
Php Php 5.1.5
Php Php 5.3.6
Php Php 5.3.9
Php Php 5.1.2
Php Php 5.3.1
Php Php 4.2.0
Php Php 5.1.1
Php Php 3.0.1
Php Php 5.3.18
Php Php 5.2.14
Php Php 3.0.2
Php Php 4.4.4
Php Php 5.0.0
NA
CVE-2013-1643
The SOAP parser in PHP prior to 5.3.23 and 5.4.x prior to 5.4.13 allows remote malicious users to read arbitrary files via a SOAP WSDL file containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue in the ...
Php Php 4.3.9
Php Php 4.4.9
Php Php 3.0
Php Php
Php Php 5.2.9
Php Php 4.0
Php Php 3.0.5
Php Php 3.0.11
Php Php 5.3.10
Php Php 5.1.5
Php Php 5.3.6
Php Php 5.3.9
Php Php 5.1.2
Php Php 5.3.1
Php Php 4.2.0
Php Php 5.1.1
Php Php 3.0.1
Php Php 5.3.18
Php Php 5.2.14
Php Php 3.0.2
Php Php 4.4.4
Php Php 5.0.0
NA
CVE-2012-2965
Caucho Quercus, as distributed in Resin prior to 4.0.29, does not properly handle unspecified characters in the names of variables, which has unknown impact and remote attack vectors, related to an "HTTP Parameter Contamination" issue.
Caucho Resin 2.0.2
Caucho Resin 4.0.7
Caucho Resin 3.1.4
Caucho Resin 2.1.0
Caucho Resin 3.1.11
Caucho Resin 3.0.16
Caucho Resin 4.0.12
Caucho Resin 4.0.18
Caucho Resin 2.1.6
Caucho Resin 4.0.21
Caucho Resin 3.0.7
Caucho Resin 2.1.8
Caucho Resin 4.0.1
Caucho Resin 3.0.19
Caucho Resin 3.0.14
Caucho Resin 2.1.12
Caucho Resin 2.1.11
Caucho Resin 2.1.13
Caucho Resin 2.1.9
Caucho Resin 4.0.22
Caucho Resin 3.1.10
Caucho Resin 4.0.15
NA
CVE-2012-2966
Caucho Quercus, as distributed in Resin prior to 4.0.29, overwrites entries in the SERVER superglobal array on the basis of POST parameters, which has unspecified impact and remote attack vectors.
Caucho Resin 2.0.2
Caucho Resin 4.0.7
Caucho Resin 3.1.4
Caucho Resin 2.1.0
Caucho Resin 3.1.11
Caucho Resin 3.0.16
Caucho Resin 4.0.12
Caucho Resin 4.0.18
Caucho Resin 2.1.6
Caucho Resin 4.0.21
Caucho Resin 3.0.7
Caucho Resin 2.1.8
Caucho Resin 4.0.1
Caucho Resin 3.0.19
Caucho Resin 3.0.14
Caucho Resin 2.1.12
Caucho Resin 2.1.11
Caucho Resin 2.1.13
Caucho Resin 2.1.9
Caucho Resin 4.0.22
Caucho Resin 3.1.10
Caucho Resin 4.0.15
NA
CVE-2012-2967
Caucho Quercus, as distributed in Resin prior to 4.0.29, does not properly implement the == (equals sign equals sign) operator for comparisons, which has unspecified impact and context-dependent attack vectors.
Caucho Resin 2.0.2
Caucho Resin 4.0.7
Caucho Resin 3.1.4
Caucho Resin 2.1.0
Caucho Resin 3.1.11
Caucho Resin 3.0.16
Caucho Resin 4.0.12
Caucho Resin 4.0.18
Caucho Resin 2.1.6
Caucho Resin 4.0.21
Caucho Resin 3.0.7
Caucho Resin 2.1.8
Caucho Resin 4.0.1
Caucho Resin 3.0.19
Caucho Resin 3.0.14
Caucho Resin 2.1.12
Caucho Resin 2.1.11
Caucho Resin 2.1.13
Caucho Resin 2.1.9
Caucho Resin 4.0.22
Caucho Resin 3.1.10
Caucho Resin 4.0.15
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »