PHP Security

LRMS PHP 1.0 SQL Injection / Shell Upload
PHP Files ≈ Packet Storm Apr 22, 2024 | 23:02 pm
LRMS PHP version 1.0 suffers from remote shell upload and multiple remote SQL injection vulnerabilities.
Read more...
Debian Security Advisory 5661-1
PHP Files ≈ Packet Storm Apr 16, 2024 | 14:12 pm
Debian Linux Security Advisory 5661-1 - Multiple security issues were found in PHP, a widely-used open source general purpose scripting language which could result in secure cookie bypass, XXE attacks or incorrect validation of password hashes.
Read more...
Debian Security Advisory 5660-1
PHP Files ≈ Packet Storm Apr 16, 2024 | 14:10 pm
Debian Linux Security Advisory 5660-1 - Multiple security issues were found in PHP, a widely-used open source general purpose scripting language which could result in secure cookie bypass, XXE attacks or incorrect validation of password hashes.
Read more...
GUnet OpenEclass E-learning 3.15 File Upload / Command Execution
PHP Files ≈ Packet Storm Apr 11, 2024 | 14:04 pm
GUnet OpenEclass E-learning platform version 3.15 suffers from an unrestricted file upload vulnerability in certbadge.php that allows for remote command execution.
Read more...
Invision Community 4.7.16 Remote Code Execution
PHP Files ≈ Packet Storm Apr 8, 2024 | 14:08 pm
Invision Community versions 4.7.16 and below suffer from a remote code execution vulnerability in toolbar.php.
Read more...
Invision Community 4.7.15 SQL Injection
PHP Files ≈ Packet Storm Apr 8, 2024 | 14:06 pm
Invision Community versions 4.4.0 through 4.7.15 suffer from a remote SQL injection vulnerability in store.php.
Read more...
DerbyNet 9.0 racer-results.php Cross Site Scripting
PHP Files ≈ Packet Storm Apr 5, 2024 | 18:14 pm
DerbyNet version 9.0 suffers from a cross site scripting vulnerability in racer-results.php.
Read more...
DerbyNet 9.0 playlist.php Cross Site Scripting
PHP Files ≈ Packet Storm Apr 5, 2024 | 18:14 pm
DerbyNet version 9.0 suffers from a cross site scripting vulnerability in playlist.php.
Read more...
DerbyNet 9.0 photo-thumbs.php Cross Site Scripting
PHP Files ≈ Packet Storm Apr 5, 2024 | 18:11 pm
DerbyNet version 9.0 suffers from a cross site scripting vulnerability in photo-thumbs.php.
Read more...
DerbyNet 9.0 checkin.php Cross Site Scripting
PHP Files ≈ Packet Storm Apr 5, 2024 | 18:10 pm
DerbyNet version 9.0 suffers from a cross site scripting vulnerability in checkin.php.
Read more...