Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php 5.3.1 vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2012-1172
The file-upload implementation in rfc1867.c in PHP prior to 5.4.0 does not properly handle invalid [ (open square bracket) characters in name values, which makes it easier for remote malicious users to cause a denial of service (malformed $_FILES indexes) or conduct directory tra...
Php Php 5.2.9
Php Php 5.1.5
Php Php 5.3.6
Php Php 5.3.9
Php Php 5.1.2
Php Php 5.3.1
Php Php 5.1.1
Php Php 5.2.14
Php Php 5.0.0
Php Php 5.1.6
Php Php 5.2.16
Php Php 5.3.8
Php Php 5.2.7
Php Php 5.2.2
Php Php 5.0.5
Php Php 5.0.1
Php Php 5.1.4
Php Php 5.2.5
Php Php 5.0.4
Php Php 5.2.12
Php Php
Php Php 5.2.11
4.3
CVSSv2
CVE-2001-1524
Cross-site scripting (XSS) vulnerability in PHP-Nuke 5.3.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the (1) uname parameter in user.php, (2) ttitle, letter and file parameters in modules.php, (3) subject, story and storyext pa...
Francisco Burzi Php-nuke 4.0
Francisco Burzi Php-nuke 5.3.1
Francisco Burzi Php-nuke 5.1
Francisco Burzi Php-nuke 4.3
Francisco Burzi Php-nuke 4.4
Francisco Burzi Php-nuke 3.0
Francisco Burzi Php-nuke 5.0
Francisco Burzi Php-nuke 5.2a
Francisco Burzi Php-nuke 5.0.1
Francisco Burzi Php-nuke 5.2
Francisco Burzi Php-nuke 4.4.1a
2 EDB exploits
7.5
CVSSv2
CVE-2012-1823
sapi/cgi/cgi_main.c in PHP prior to 5.3.12 and 5.4.x prior to 5.4.2, when configured as a CGI script (aka php-cgi), does not properly handle query strings that lack an = (equals sign) character, which allows remote malicious users to execute arbitrary code by placing command-line...
Php Php 5.2.9
Php Php 5.3.10
Php Php 5.1.5
Php Php 5.3.6
Php Php 5.3.9
Php Php 5.1.2
Php Php 5.3.1
Php Php 5.1.1
Php Php 5.2.14
Php Php 5.0.0
Php Php 5.1.6
Php Php 5.2.16
Php Php 5.3.8
Php Php 5.2.7
Php Php 5.2.2
Php Php 5.0.5
Php Php 5.0.1
Php Php 5.1.4
Php Php 5.2.5
Php Php 5.0.4
Php Php 5.2.12
Php Php 5.2.11
4 EDB exploits
2 Nmap scripts
17 Github repositories
2 Articles
7.5
CVSSv2
CVE-2002-0206
index.php in Francisco Burzi PHP-Nuke 5.3.1 and previous versions, and possibly other versions prior to 5.5, allows remote malicious users to execute arbitrary PHP code by specifying a URL to the malicious code in the file parameter.
Francisco Burzi Php-nuke 4.0
Francisco Burzi Php-nuke 5.3.1
Francisco Burzi Php-nuke 5.1
Francisco Burzi Php-nuke 4.3
Francisco Burzi Php-nuke 1.0
Francisco Burzi Php-nuke 4.4
Francisco Burzi Php-nuke 2.5
Francisco Burzi Php-nuke 3.0
Francisco Burzi Php-nuke 5.0
Francisco Burzi Php-nuke 5.2a
Francisco Burzi Php-nuke 5.0.1
Francisco Burzi Php-nuke 5.2
Francisco Burzi Php-nuke 4.4.1a
1 EDB exploit
5
CVSSv2
CVE-2002-2032
sql_layer.php in PHP-Nuke 5.4 and previous versions does not restrict access to debugging features, which allows remote malicious users to gain SQL query information by setting the sql_debug parameter to (1) index.php and (2) modules.php.
Francisco Burzi Php-nuke 4.0
Francisco Burzi Php-nuke 5.3.1
Francisco Burzi Php-nuke 5.1
Francisco Burzi Php-nuke 4.3
Francisco Burzi Php-nuke 1.0
Francisco Burzi Php-nuke 4.4
Francisco Burzi Php-nuke 2.5
Francisco Burzi Php-nuke 3.0
Francisco Burzi Php-nuke 5.0
Francisco Burzi Php-nuke 5.4
Francisco Burzi Php-nuke 5.2a
Francisco Burzi Php-nuke 5.0.1
Francisco Burzi Php-nuke 5.2
Francisco Burzi Php-nuke 4.4.1a
1 EDB exploit
7.5
CVSSv2
CVE-2011-1480
SQL injection vulnerability in admin.php in the administration backend in Francisco Burzi PHP-Nuke 8.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the chng_uid parameter.
Phpnuke Php-nuke 5.6
Phpnuke Php-nuke 7.3
Phpnuke Php-nuke 7.4
Phpnuke Php-nuke 7.1
Phpnuke Php-nuke 5.0.1
Phpnuke Php-nuke 5.5
Phpnuke Php-nuke 7.9
Phpnuke Php-nuke 5.3
Phpnuke Php-nuke 6.9
Phpnuke Php-nuke 5.3.1
Phpnuke Php-nuke 5.0
Phpnuke Php-nuke 6.8
Phpnuke Php-nuke 6.6
Phpnuke Php-nuke 7.5
Phpnuke Php-nuke 7.2
Phpnuke Php-nuke 7.7
Phpnuke Php-nuke
Phpnuke Php-nuke 5.2
Phpnuke Php-nuke 7.8
Phpnuke Php-nuke 6.0
Phpnuke Php-nuke 6.7
Phpnuke Php-nuke 7.0
4.3
CVSSv2
CVE-2011-1481
Multiple cross-site scripting (XSS) vulnerabilities in Francisco Burzi PHP-Nuke 8.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) sender_name or (2) sender_email parameter in a Feedback action to modules.php.
Phpnuke Php-nuke 5.6
Phpnuke Php-nuke 7.3
Phpnuke Php-nuke 7.4
Phpnuke Php-nuke 7.1
Phpnuke Php-nuke 5.0.1
Phpnuke Php-nuke 5.5
Phpnuke Php-nuke 7.9
Phpnuke Php-nuke 5.3
Phpnuke Php-nuke 6.9
Phpnuke Php-nuke 5.3.1
Phpnuke Php-nuke 5.0
Phpnuke Php-nuke 6.8
Phpnuke Php-nuke 6.6
Phpnuke Php-nuke 7.5
Phpnuke Php-nuke 7.2
Phpnuke Php-nuke 7.7
Phpnuke Php-nuke
Phpnuke Php-nuke 5.2
Phpnuke Php-nuke 7.8
Phpnuke Php-nuke 6.0
Phpnuke Php-nuke 6.7
Phpnuke Php-nuke 7.0
6.8
CVSSv2
CVE-2011-1482
Multiple cross-site request forgery (CSRF) vulnerabilities in mainfile.php in Francisco Burzi PHP-Nuke 8.0 and previous versions allow remote malicious users to hijack the authentication of administrators for requests that (1) add user accounts or (2) grant the administrative pri...
Phpnuke Php-nuke 5.6
Phpnuke Php-nuke 7.3
Phpnuke Php-nuke 7.4
Phpnuke Php-nuke 7.1
Phpnuke Php-nuke 5.0.1
Phpnuke Php-nuke 5.5
Phpnuke Php-nuke 7.9
Phpnuke Php-nuke 5.3
Phpnuke Php-nuke 6.9
Phpnuke Php-nuke 5.3.1
Phpnuke Php-nuke 5.0
Phpnuke Php-nuke 6.8
Phpnuke Php-nuke 6.6
Phpnuke Php-nuke 7.5
Phpnuke Php-nuke 7.2
Phpnuke Php-nuke 7.7
Phpnuke Php-nuke
Phpnuke Php-nuke 5.2
Phpnuke Php-nuke 7.8
Phpnuke Php-nuke 6.0
Phpnuke Php-nuke 6.7
Phpnuke Php-nuke 7.0
7.5
CVSSv2
CVE-2008-6728
SQL injection vulnerability in the Sections module in PHP-Nuke, probably prior to 8.0, allows remote malicious users to execute arbitrary SQL commands via the artid parameter in a printpage action to modules.php.
Phpnuke Php-nuke 5.6
Phpnuke Php-nuke 7.3
Phpnuke Php-nuke 7.4
Phpnuke Php-nuke 7.1
Phpnuke Php-nuke 5.0.1
Phpnuke Php-nuke 5.5
Phpnuke Php-nuke 5.3
Phpnuke Php-nuke 6.9
Phpnuke Php-nuke 5.3.1
Phpnuke Php-nuke 5.0
Phpnuke Php-nuke
Phpnuke Php-nuke 6.8
Phpnuke Php-nuke 6.6
Phpnuke Php-nuke 7.5
Phpnuke Php-nuke 7.2
Phpnuke Php-nuke 7.7
Phpnuke Php-nuke 5.2
Phpnuke Php-nuke 7.8
Phpnuke Php-nuke 6.0
Phpnuke Php-nuke 6.7
Phpnuke Php-nuke 7.0
Phpnuke Php-nuke 6.5
4.3
CVSSv2
CVE-2011-0753
Race condition in the PCNTL extension in PHP prior to 5.3.4, when a user-defined signal handler exists, might allow context-dependent malicious users to cause a denial of service (memory corruption) via a large number of concurrent signals.
Php Php 4.3.9
Php Php 4.4.9
Php Php 3.0
Php Php 4.0
Php Php 3.0.5
Php Php 3.0.11
Php Php 5.3.1
Php Php 4.2.0
Php Php 3.0.1
Php Php 3.0.2
Php Php 4.4.4
Php Php 4.1.0
Php Php 4.3.4
Php Php 4.0.4
Php Php 4.3.0
Php Php 4.0.5
Php Php 3.0.8
Php Php 4.3.6
Php Php 3.0.13
Php Php 4.3.7
Php Php 4.2.2
Php Php 4.4.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »