Количество 10
Количество 10
BDU:2022-02597
Уязвимость функции file_exists интерпретатора языка программирования PHP, позволяющая нарушителю обойти существующие ограничения безопасности
CVE-2006-7243
PHP before 5.3.4 accepts the \0 character in a pathname, which might allow context-dependent attackers to bypass intended access restrictions by placing a safe file extension after this character, as demonstrated by .php\0.jpg at the end of the argument to the file_exists function.
CVE-2006-7243
PHP before 5.3.4 accepts the \0 character in a pathname, which might allow context-dependent attackers to bypass intended access restrictions by placing a safe file extension after this character, as demonstrated by .php\0.jpg at the end of the argument to the file_exists function.
CVE-2006-7243
PHP before 5.3.4 accepts the \0 character in a pathname, which might allow context-dependent attackers to bypass intended access restrictions by placing a safe file extension after this character, as demonstrated by .php\0.jpg at the end of the argument to the file_exists function.
CVE-2006-7243
PHP before 5.3.4 accepts the \0 character in a pathname, which might a ...
GHSA-qxh9-g3ww-hcvc
PHP before 5.3.4 accepts the \0 character in a pathname, which might allow context-dependent attackers to bypass intended access restrictions by placing a safe file extension after this character, as demonstrated by .php\0.jpg at the end of the argument to the file_exists function.
ELSA-2014-0311
ELSA-2014-0311: php security update (CRITICAL)
ELSA-2013-1615
ELSA-2013-1615: php security, bug fix, and enhancement update (MODERATE)
ELSA-2013-1307
ELSA-2013-1307: php53 security, bug fix and enhancement update (MODERATE)
SUSE-SU-2016:1638-1
Security update for php53
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2022-02597 Уязвимость функции file_exists интерпретатора языка программирования PHP, позволяющая нарушителю обойти существующие ограничения безопасности | CVSS3: 3.7 | 2% Низкий | больше 14 лет назад |
 | CVE-2006-7243 PHP before 5.3.4 accepts the \0 character in a pathname, which might allow context-dependent attackers to bypass intended access restrictions by placing a safe file extension after this character, as demonstrated by .php\0.jpg at the end of the argument to the file_exists function. | CVSS2: 5 | 2% Низкий | больше 14 лет назад |
 | CVE-2006-7243 PHP before 5.3.4 accepts the \0 character in a pathname, which might allow context-dependent attackers to bypass intended access restrictions by placing a safe file extension after this character, as demonstrated by .php\0.jpg at the end of the argument to the file_exists function. | CVSS2: 4 | 2% Низкий | больше 18 лет назад |
 | CVE-2006-7243 PHP before 5.3.4 accepts the \0 character in a pathname, which might allow context-dependent attackers to bypass intended access restrictions by placing a safe file extension after this character, as demonstrated by .php\0.jpg at the end of the argument to the file_exists function. | CVSS2: 5 | 2% Низкий | больше 14 лет назад |
| CVE-2006-7243 PHP before 5.3.4 accepts the \0 character in a pathname, which might a ... | CVSS2: 5 | 2% Низкий | больше 14 лет назад |
| GHSA-qxh9-g3ww-hcvc PHP before 5.3.4 accepts the \0 character in a pathname, which might allow context-dependent attackers to bypass intended access restrictions by placing a safe file extension after this character, as demonstrated by .php\0.jpg at the end of the argument to the file_exists function. | 2% Низкий | около 3 лет назад | |
| ELSA-2014-0311 ELSA-2014-0311: php security update (CRITICAL) | больше 11 лет назад | ||
| ELSA-2013-1615 ELSA-2013-1615: php security, bug fix, and enhancement update (MODERATE) | больше 11 лет назад | ||
| ELSA-2013-1307 ELSA-2013-1307: php53 security, bug fix and enhancement update (MODERATE) | больше 11 лет назад | ||
 | SUSE-SU-2016:1638-1 Security update for php53 | почти 9 лет назад |
Уязвимостей на страницу