Количество 9
Количество 9
CVE-2012-1172
The file-upload implementation in rfc1867.c in PHP before 5.4.0 does not properly handle invalid [ (open square bracket) characters in name values, which makes it easier for remote attackers to cause a denial of service (malformed $_FILES indexes) or conduct directory traversal attacks during multi-file uploads by leveraging a script that lacks its own filename restrictions.
CVE-2012-1172
The file-upload implementation in rfc1867.c in PHP before 5.4.0 does not properly handle invalid [ (open square bracket) characters in name values, which makes it easier for remote attackers to cause a denial of service (malformed $_FILES indexes) or conduct directory traversal attacks during multi-file uploads by leveraging a script that lacks its own filename restrictions.
CVE-2012-1172
The file-upload implementation in rfc1867.c in PHP before 5.4.0 does not properly handle invalid [ (open square bracket) characters in name values, which makes it easier for remote attackers to cause a denial of service (malformed $_FILES indexes) or conduct directory traversal attacks during multi-file uploads by leveraging a script that lacks its own filename restrictions.
CVE-2012-1172
The file-upload implementation in rfc1867.c in PHP before 5.4.0 does n ...
GHSA-jpm9-86g2-j2gx
The file-upload implementation in rfc1867.c in PHP before 5.4.0 does not properly handle invalid [ (open square bracket) characters in name values, which makes it easier for remote attackers to cause a denial of service (malformed $_FILES indexes) or conduct directory traversal attacks during multi-file uploads by leveraging a script that lacks its own filename restrictions.
BDU:2022-02630
Уязвимость компонента rfc1867.c интерпретатора языка программирования PHP, позволяющая нарушителю вызвать отказ в обслуживании
ELSA-2012-1045
ELSA-2012-1045: php security update (MODERATE)
ELSA-2012-1047
ELSA-2012-1047: php53 security update (MODERATE)
ELSA-2012-1046
ELSA-2012-1046: php security update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2012-1172 The file-upload implementation in rfc1867.c in PHP before 5.4.0 does not properly handle invalid [ (open square bracket) characters in name values, which makes it easier for remote attackers to cause a denial of service (malformed $_FILES indexes) or conduct directory traversal attacks during multi-file uploads by leveraging a script that lacks its own filename restrictions. | CVSS2: 5.8 | 5% Низкий | больше 13 лет назад |
 | CVE-2012-1172 The file-upload implementation in rfc1867.c in PHP before 5.4.0 does not properly handle invalid [ (open square bracket) characters in name values, which makes it easier for remote attackers to cause a denial of service (malformed $_FILES indexes) or conduct directory traversal attacks during multi-file uploads by leveraging a script that lacks its own filename restrictions. | CVSS2: 6.4 | 5% Низкий | больше 13 лет назад |
 | CVE-2012-1172 The file-upload implementation in rfc1867.c in PHP before 5.4.0 does not properly handle invalid [ (open square bracket) characters in name values, which makes it easier for remote attackers to cause a denial of service (malformed $_FILES indexes) or conduct directory traversal attacks during multi-file uploads by leveraging a script that lacks its own filename restrictions. | CVSS2: 5.8 | 5% Низкий | больше 13 лет назад |
| CVE-2012-1172 The file-upload implementation in rfc1867.c in PHP before 5.4.0 does n ... | CVSS2: 5.8 | 5% Низкий | больше 13 лет назад |
| GHSA-jpm9-86g2-j2gx The file-upload implementation in rfc1867.c in PHP before 5.4.0 does not properly handle invalid [ (open square bracket) characters in name values, which makes it easier for remote attackers to cause a denial of service (malformed $_FILES indexes) or conduct directory traversal attacks during multi-file uploads by leveraging a script that lacks its own filename restrictions. | 5% Низкий | больше 3 лет назад | |
 | BDU:2022-02630 Уязвимость компонента rfc1867.c интерпретатора языка программирования PHP, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 4.8 | 5% Низкий | больше 13 лет назад |
| ELSA-2012-1045 ELSA-2012-1045: php security update (MODERATE) | больше 13 лет назад | ||
| ELSA-2012-1047 ELSA-2012-1047: php53 security update (MODERATE) | больше 13 лет назад | ||
| ELSA-2012-1046 ELSA-2012-1046: php security update (MODERATE) | больше 13 лет назад |
Уязвимостей на страницу