Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zend zend platform vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-4431
Multiple buffer overflows in the (a) Session Clustering Daemon and the (b) mod_cluster module in the Zend Platform 2.2.1 and previous versions allow remote malicious users to cause a denial of service (crash) or execute arbitrary code via a (1) empty or (2) crafted PHP session id...
Zend Zend Platform
7.5
CVSSv2
CVE-2006-4432
Directory traversal vulnerability in Zend Platform 2.2.1 and previous versions allows remote malicious users to overwrite arbitrary files via a .. (dot dot) sequence in the final component of the PHP session identifier (PHPSESSID). NOTE: in some cases, this issue can be leveraged...
Zend Zend Platform
4.4
CVSSv2
CVE-2007-1369
ini_modifier (sgid-zendtech) in Zend Platform 2.2.3 and previous versions allows local users to modify the system php.ini file by editing a copy of php.ini file using the -f parameter, and then performing a symlink attack using the directory that contains the attacker-controlled ...
Zend Zend Platform
1 EDB exploit
6.2
CVSSv2
CVE-2007-1370
Zend Platform 2.2.3 and previous versions has incorrect ownership for scd.sh and certain other files, which allows local users to gain root privileges by modifying the files. NOTE: this only occurs when safe_mode and open_basedir are disabled; other settings require leverage for ...
Zend Zend Platform 2.2.1a
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started