Search Results (Refine Search)
- CPE Product Version: cpe:/a:php:php:4.3.11
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2005-3392 |
Unspecified vulnerability in PHP before 4.4.1, when using the virtual function on Apache 2, allows remote attackers to bypass safe_mode and open_basedir directives. Published: November 01, 2005; 7:47:00 AM -0500 |
V3.x:(not available) V2.0: 7.5 HIGH |
CVE-2005-3319 |
The apache2handler SAPI (sapi_apache2.c) in the Apache module (mod_php) for PHP 5.x before 5.1.0 final and 4.4 before 4.4.1 final allows attackers to cause a denial of service (segmentation fault) via the session.save_path option in a .htaccess file or VirtualHost. Published: October 27, 2005; 6:02:00 AM -0400 |
V3.x:(not available) V2.0: 2.1 LOW |
CVE-2004-0958 |
php_variables.c in PHP before 5.0.2 allows remote attackers to read sensitive memory contents via (1) GET, (2) POST, or (3) COOKIE GPC variables that end in an open bracket character, which causes PHP to calculate an incorrect string length. Published: November 03, 2004; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
CVE-2004-0959 |
rfc1867.c in PHP before 5.0.2 allows local users to upload files to arbitrary locations via a PHP script with a certain MIME header that causes the "$_FILES" array to be modified. Published: November 03, 2004; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 2.1 LOW |