Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php 5.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-2687
The exif_read_data function in the Exif module in PHP prior to 5.2.10 allows remote malicious users to cause a denial of service (crash) via a malformed JPEG image with invalid offset fields, a different issue than CVE-2005-3353.
Php Php
Debian Debian Linux 5.0
Debian Debian Linux 4.0
Debian Debian Linux 6.0
NA
CVE-2008-6728
SQL injection vulnerability in the Sections module in PHP-Nuke, probably prior to 8.0, allows remote malicious users to execute arbitrary SQL commands via the artid parameter in a printpage action to modules.php.
Phpnuke Php-nuke 7.1
Phpnuke Php-nuke 7.2
Phpnuke Php-nuke 7.0
Phpnuke Php-nuke 6.5
Phpnuke Php-nuke 5.6
Phpnuke Php-nuke 5.4
Phpnuke Php-nuke 5.5
Phpnuke Php-nuke 7.6
Phpnuke Php-nuke 7.5
Phpnuke Php-nuke 5.3
Phpnuke Php-nuke 5.3.1
Phpnuke Php-nuke 6.9
Phpnuke Php-nuke
Phpnuke Php-nuke 7.4
Phpnuke Php-nuke 7.3
Phpnuke Php-nuke 5.1
Phpnuke Php-nuke 5.2
Phpnuke Php-nuke 6.7
Phpnuke Php-nuke 6.8
Phpnuke Php-nuke 7.8
Phpnuke Php-nuke 7.7
Phpnuke Php-nuke 5.0
NA
CVE-2008-6223
PHP remote file inclusion vulnerability in visualizza.php in Way Of The Warrior (WOTW) 5.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the plancia parameter to crea.php.
Wotw Way Of The Warrior 5.0
1 EDB exploit
NA
CVE-2008-5814
Cross-site scripting (XSS) vulnerability in PHP, possibly 5.2.7 and previous versions, when display_errors is enabled, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors. NOTE: because of the lack of details, it is unclear whether this is...
Php Php
Php Php 5.1.1
Php Php 5.1.0
Php Php 5.0.5
Php Php 5.0.0
Php Php 5
Php Php 4.4.9
Php Php 4.4.0
Php Php 4.4.1
Php Php 4.3.4
Php Php 4.3.0
Php Php 4.1.0
Php Php 4.2.1
Php Php 4.0
Php Php 4.1.1
Php Php 4.0.6
Php Php 4.0.7
Php Php 4.0.1
Php Php 3.0.4
Php Php 3.0.3
Php Php 3.0.11
Php Php 3.0.10
NA
CVE-2008-5760
Cross-site scripting (XSS) vulnerability in error413.php in Kerio MailServer prior to 6.6.2 allows remote malicious users to inject arbitrary web script or HTML via the sent parameter. NOTE: some of these details are obtained from third party information.
Kerio Kerio Mailserver 6.5.2
Kerio Kerio Mailserver 6.5.1
Kerio Kerio Mailserver 6.3.0
Kerio Kerio Mailserver 6.2.2
Kerio Kerio Mailserver 6.1.3
Kerio Kerio Mailserver 6.1.1
Kerio Kerio Mailserver 6.0.0
Kerio Kerio Mailserver 6.0.1
Kerio Kerio Mailserver 5.7.5
Kerio Kerio Mailserver 5.7.8
Kerio Kerio Mailserver 5.6.3
Kerio Kerio Mailserver 5.6.4
Kerio Kerio Mailserver 6.6.0
Kerio Kerio Mailserver 6.3.1 P2
Kerio Kerio Mailserver 6.3.1
Kerio Kerio Mailserver 6.3.1 P1
Kerio Kerio Mailserver 6.1.2
Kerio Kerio Mailserver 6.0.9
Kerio Kerio Mailserver 6.0.2
Kerio Kerio Mailserver 6.0.3
Kerio Kerio Mailserver 5.7.4
Kerio Kerio Mailserver 5.7.3
NA
CVE-2008-5498
Array index error in the imageRotate function in PHP 5.2.8 and previous versions allows context-dependent malicious users to read the contents of arbitrary memory locations via a crafted value of the third argument (aka the bgd_color or clrBack argument) for an indexed image.
Php Php 5.1.3
Php Php 5.1.2
Php Php 5.2.1
Php Php 5.2.2
Php Php 5.0
Php Php 5.0.2
Php Php 5.0.1
Php Php 5.0.0
Php Php 5.2.6
Php Php 5.2.5
Php Php 5.1.6
Php Php 5.2.0
Php Php 5.0.4
Php Php 5.0.3
Php Php
Php Php 5.1.1
Php Php 5.1.0
Php Php 5.0.5
Php Php 5
Php Php 5.2.7
Php Php 5.2.4
Php Php 5.2.3
1 EDB exploit
NA
CVE-2008-2666
Multiple directory traversal vulnerabilities in PHP 5.2.6 and previous versions allow context-dependent malicious users to bypass safe_mode restrictions by creating a subdirectory named http: and then placing ../ (dot dot slash) sequences in an http URL argument to the (1) chdir ...
Php Php 5.0.0
Php Php 5.0.1
Php Php 5.1.0
Php Php 5.1.1
Php Php 5.2.1
Php Php 5.2.2
Php Php 5.0.2
Php Php 5.0.3
Php Php 5.1.2
Php Php 5.1.3
Php Php 5.2.3
Php Php 5.2.4
Php Php 5.0
Php Php 5.1.6
Php Php 5.2.0
Php Php 5.0.4
Php Php 5.0.5
Php Php 5.1.4
Php Php 5.1.5
Php Php 5.2.5
Php Php
1 EDB exploit
NA
CVE-2008-0137
PHP remote file inclusion vulnerability in config.inc.php in SNETWORKS PHP CLASSIFIEDS 5.0 allows remote malicious users to execute arbitrary PHP code via a URL in the path_escape parameter.
Snetworks Php Classifieds 5.0
1 EDB exploit
NA
CVE-2007-4923
PHP remote file inclusion vulnerability in admin.joomlaradiov5.php in the Joomla Radio 5 (com_joomlaradiov5) component for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_live_site parameter.
Joomla Joomla Radio 5
1 EDB exploit
NA
CVE-2007-2844
PHP 4.x and 5.x prior to 5.2.1, when running on multi-threaded systems, does not ensure thread safety for libc crypt function calls using protection schemes such as a mutex, which creates race conditions that allow remote malicious users to overwrite internal program memory and g...
Php Php 4.0.3
Php Php 4.0.7
Php Php 4.0
Php Php 4.1.0
Php Php 4.3.1
Php Php 4.3.10
Php Php 4.3.7
Php Php 4.3.8
Php Php 4.4.5
Php Php 4.4.6
Php Php 5.0.0
Php Php 5.0.1
Php Php 4.0.0
Php Php 4.0.1
Php Php 4.0.5
Php Php 4.0.6
Php Php 4.2.1
Php Php 4.2.2
Php Php 4.3.3
Php Php 4.3.4
Php Php 4.4.1
Php Php 4.4.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »