Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php 2.0 vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2012-2376
Buffer overflow in the com_print_typeinfo function in PHP 5.4.3 and previous versions on Windows allows remote malicious users to execute arbitrary code via crafted arguments that trigger incorrect handling of COM object VARIANT types, as exploited in the wild in May 2012.
Php Php 5.4.2
Php Php 5.4.1
Php Php 5.3.2
Php Php 5.2.8
Php Php 5.2.6
Php Php 5.1.1
Php Php 5.1.0
Php Php 5.3.6
Php Php 5.0.0
Php Php 5.2.3
Php Php 5.2.1
Php Php 5.3.3
Php Php 5.2.7
Php Php 5.2.14
Php Php 4.3.10
Php Php 4.2.1
Php Php 4.2.0
Php Php 4.3.8
Php Php 4.3.9
Php Php 4.4.9
Php Php 4.3.0
Php Php 4.0.6
1 EDB exploit
1000
VMScore
CVE-2008-4329
PHP remote file inclusion vulnerability in cms/system/openengine.php in openEngine 2.0 beta4 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the oe_classpath parameter.
Openengine Openengine 1.9 Beta2
Openengine Openengine 1.9 Beta3
Openengine Openengine 1.7.1
Openengine Openengine 1.8 Beta2
Openengine Openengine 1.9 Beta1
Openengine Openengine
1 EDB exploit
1000
VMScore
CVE-2008-3455
PHP remote file inclusion vulnerability in include/admin.php in JnSHosts PHP Hosting Directory 2.0 allows remote malicious users to execute arbitrary PHP code via a URL in the rd parameter.
Jnshosts Php Hosting Directory 2.0
1 EDB exploit
1000
VMScore
CVE-2007-2985
Pheap 2.0 allows remote malicious users to bypass authentication by setting a pheap_login cookie value to the administrator's username, which can be used to (1) obtain sensitive information, including the administrator password, via settings.php or (2) upload and execute arb...
Pheap Pheap 2.0
1 EDB exploit
1000
VMScore
CVE-2007-1394
Direct static code injection vulnerability in startsession.php in Flat Chat 2.0 allows remote malicious users to execute arbitrary PHP code via the Chat Name field, which is inserted into online.txt and included by users.php. NOTE: some of these details are obtained from third pa...
Flat Chat Flat Chat 2.0
1 EDB exploit
1000
VMScore
CVE-2006-7052
Multiple PHP remote file inclusion vulnerabilities in DotWidget For Articles (dotwidgeta) 0.2 allow remote malicious users to execute arbitrary code via a URL in the (1) file_path parameter to (a) index.php, (b) showcatpicks.php, and (c) showarticle.php; and the (2) admin_header_...
Keith Reichley Dotwidget For Articles 0.2
7 EDB exploits
1000
VMScore
CVE-2004-0990
Integer overflow in GD Graphics Library libgd 2.0.28 (libgd2), and possibly other versions, allows remote malicious users to cause a denial of service and possibly execute arbitrary code via PNG image files with large image rows values that lead to a heap-based buffer overflow in...
Gd Graphics Library Gdlib 1.8.4
Gd Graphics Library Gdlib 2.0.26
Gd Graphics Library Gdlib 2.0.27
Gd Graphics Library Gdlib 2.0.28
Gd Graphics Library Gdlib 2.0.1
Gd Graphics Library Gdlib 2.0.15
Openpkg Openpkg 2.1
Openpkg Openpkg 2.2
Gd Graphics Library Gdlib 2.0.20
Gd Graphics Library Gdlib 2.0.21
Openpkg Openpkg Current
Gd Graphics Library Gdlib 2.0.22
Gd Graphics Library Gdlib 2.0.23
Suse Suse Linux 8.1
Suse Suse Linux 8.2
Trustix Secure Linux 2.1
Trustix Secure Linux 2.2
Suse Suse Linux 9.0
Suse Suse Linux 9.1
Suse Suse Linux 9.2
Gentoo Linux
Suse Suse Linux 8.0
1 EDB exploit
1000
VMScore
CVE-2004-1227
Directory traversal vulnerability in SugarCRM Sugar Sales 2.0.1c and previous versions allows remote malicious users to read arbitrary files and possibly execute arbitrary PHP code via .. (dot dot) sequences in the (1) module, (2) action, or (3) theme parameters to index.php, (4)...
Sugarcrm Sugar Sales
1 EDB exploit
1000
VMScore
CVE-2004-0246
Multiple PHP remote file inclusion vulnerabilities in (1) fonctions.lib.php, (2) derniers_commentaires.php, and (3) admin.php in Les Commentaires 2.0 allow remote malicious users to execute arbitrary PHP code via the rep parameter.
Laurent Adda Les Commentaires 2.0
3 EDB exploits
1000
VMScore
CVE-1999-0238
php.cgi allows malicious users to read any file on the system.
Php Php 2.0
Php Php 2.0b10
Php Php 1.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »