Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php 4.4.4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-0754
PHP 4.4.4, 5.1.6, and other versions, when running on Apache, allows local users to modify behavior of other sites hosted on the same web server by modifying the mbstring.func_overload setting within .htaccess, which causes this setting to be applied to other virtual hosts on the...
Php Php 4.4.4
Php Php 5.1.6
1 EDB exploit
NA
CVE-2007-1710
The readfile function in PHP 4.4.4, 5.1.6, and 5.2.1 allows context-dependent malicious users to bypass safe_mode restrictions and read arbitrary files by referring to local files with a certain URL syntax instead of a pathname syntax, as demonstrated by a filename preceded a &qu...
Php Php 4.4.4
Php Php 5.1.6
Php Php 5.2.1
NA
CVE-2007-1287
A regression error in the phpinfo function in PHP 4.4.3 to 4.4.6, and PHP 6.0 in CVS, allows remote malicious users to conduct cross-site scripting (XSS) attacks via GET, POST, or COOKIE array values, which are not escaped in the phpinfo output, as originally fixed for CVE-2005-3...
Php Php 4.4.4
Php Php 4.4.5
Php Php 4.4.6
Php Php 6.0
1 EDB exploit
NA
CVE-2006-7087
CRLF injection vulnerability in the mail function in Dotdeb PHP prior to 5.2.0 Rev 3 allows remote malicious users to bypass the protection scheme and inject arbitrary email headers via CRLF sequences in the query string, which is processed via the PHP_SELF variable.
Dotdeb Dotdeb Php 4.4
Dotdeb Dotdeb Php 4.4.3
Dotdeb Dotdeb Php 4.4.4
Dotdeb Dotdeb Php 5.0
Dotdeb Dotdeb Php 5.1
Dotdeb Dotdeb Php 5.2
NA
CVE-2008-3658
Buffer overflow in the imageloadfont function in ext/gd/gd.c in PHP 4.4.x prior to 4.4.9 and PHP 5.2 prior to 5.2.6-r6 allows context-dependent malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted font file.
Php Php 4.4.0
Php Php 4.4.1
Php Php 4.4.2
Php Php 4.4.3
Php Php 4.4.4
Php Php 4.4.5
Php Php 4.4.6
Php Php 4.4.7
Php Php 4.4.8
Php Php 5.2.0
Php Php 5.2.1
Php Php 5.2.2
NA
CVE-2008-3659
Buffer overflow in the memnstr function in PHP 4.4.x prior to 4.4.9 and PHP 5.6 up to and including 5.2.6 allows context-dependent malicious users to cause a denial of service (crash) and possibly execute arbitrary code via the delimiter argument to the explode function. NOTE: th...
Php Php 4.4.0
Php Php 4.4.1
Php Php 4.4.2
Php Php 4.4.3
Php Php 4.4.4
Php Php 4.4.5
Php Php 4.4.6
Php Php 4.4.7
Php Php 4.4.8
Php Php 5.2.0
Php Php 5.2.1
Php Php 5.2.2
NA
CVE-2008-3660
PHP 4.4.x prior to 4.4.9, and 5.x up to and including 5.2.6, when used as a FastCGI module, allows remote malicious users to cause a denial of service (crash) via a request with multiple dots preceding the extension, as demonstrated using foo..php.
Php Php 4.4.0
Php Php 4.4.1
Php Php 4.4.2
Php Php 4.4.3
Php Php 4.4.4
Php Php 4.4.5
Php Php 4.4.6
Php Php 4.4.7
Php Php 4.4.8
Php Php 5.2.0
Php Php 5.2.1
Php Php 5.2.2
NA
CVE-2007-2511
Buffer overflow in the user_filter_factory_create function in PHP prior to 5.2.2 has unknown impact and local attack vectors.
Php Php 4.0.0
Php Php 4.0.1
Php Php 4.0.2
Php Php 4.0.3
Php Php 4.0.4
Php Php 4.0.5
Php Php 4.0.6
Php Php 4.0.7
Php Php 4.1.0
Php Php 4.1.1
Php Php 4.1.2
Php Php 4.2.0
NA
CVE-2008-7068
The dba_replace function in PHP 5.2.6 and 4.x allows context-dependent malicious users to cause a denial of service (file truncation) via a key with the NULL byte. NOTE: this might only be a vulnerability in limited circumstances in which the attacker can modify or add database e...
Php Php 4.0
Php Php 4.0.0
Php Php 4.0.1
Php Php 4.0.2
Php Php 4.0.3
Php Php 4.0.4
Php Php 4.0.5
Php Php 4.0.6
Php Php 4.0.7
Php Php 4.1.0
Php Php 4.1.1
Php Php 4.1.2
NA
CVE-2008-5557
Heap-based buffer overflow in ext/mbstring/libmbfl/filters/mbfilter_htmlent.c in the mbstring extension in PHP 4.3.0 up to and including 5.2.6 allows context-dependent malicious users to execute arbitrary code via a crafted string containing an HTML entity, which is not properly ...
Php Php 4.3.0
Php Php 4.3.1
Php Php 4.3.2
Php Php 4.3.3
Php Php 4.3.4
Php Php 4.3.5
Php Php 4.3.6
Php Php 4.3.7
Php Php 4.3.8
Php Php 4.3.9
Php Php 4.3.10
Php Php 4.3.11
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
log injection
CVE-2024-42327
CVE-2024-53691
camera
CVE-2024-53810
CVE-2024-41649
logic flaw
CVE-2024-38921
CVE-2024-41713
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »