CVSS: 9.1EPSS: 10%CPEs: 48EXPL: 0CVE-2005-3389
https://notcve.org/view.php?id=CVE-2005-3389
01 Nov 2005 — The parse_str function in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5, when called with only one parameter, allows remote attackers to enable the register_globals directive via inputs that cause a request to be terminated due to the memory_limit setting, which causes PHP to set an internal flag that enables register_globals and allows attackers to exploit vulnerabilities in PHP applications that would otherwise be protected. • http://itrc.hp.com/service/cki/docDisplay.do?docId=c00786522 •
CVSS: 6.1EPSS: 65%CPEs: 48EXPL: 1CVE-2005-3388 – PHP 4.x - PHPInfo Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2005-3388
01 Nov 2005 — Cross-site scripting (XSS) vulnerability in the phpinfo function in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5 allows remote attackers to inject arbitrary web script or HTML via a crafted URL with a "stacked array assignment." • https://www.exploit-db.com/exploits/26442 •
CVSS: 9.1EPSS: 65%CPEs: 63EXPL: 1CVE-2005-3390 – PHP 4.x/5.0.x - Arbitrary File Upload GLOBAL Variable Overwrite
https://notcve.org/view.php?id=CVE-2005-3390
01 Nov 2005 — The RFC1867 file upload feature in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5, when register_globals is enabled, allows remote attackers to modify the GLOBALS array and bypass security protections of PHP applications via a multipart/form-data POST request with a "GLOBALS" fileupload field. • https://www.exploit-db.com/exploits/26443 •
CVSS: 7.5EPSS: 0%CPEs: 44EXPL: 0CVE-2005-3319
https://notcve.org/view.php?id=CVE-2005-3319
27 Oct 2005 — The apache2handler SAPI (sapi_apache2.c) in the Apache module (mod_php) for PHP 5.x before 5.1.0 final and 4.4 before 4.4.1 final allows attackers to cause a denial of service (segmentation fault) via the session.save_path option in a .htaccess file or VirtualHost. • http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0491.html •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2005-0596
https://notcve.org/view.php?id=CVE-2005-0596
01 Mar 2005 — PHP 4 (PHP4) allows attackers to cause a denial of service (daemon crash) by using the readfile function on a file whose size is a multiple of the page size. • http://www.linuxcompatible.org/story42495.html •
CVSS: 7.5EPSS: 5%CPEs: 14EXPL: 3CVE-2004-1392 – PHP 4.x/5 - cURL 'open_basedir' Restriction Bypass
https://notcve.org/view.php?id=CVE-2004-1392
31 Dec 2004 — PHP 4.0 with cURL functions allows remote attackers to bypass the open_basedir setting and read arbitrary files via a file: URL argument to the curl_init function. • https://www.exploit-db.com/exploits/24711 •
CVSS: 10.0EPSS: 7%CPEs: 65EXPL: 0CVE-2004-1019
https://notcve.org/view.php?id=CVE-2004-1019
22 Dec 2004 — The deserialization code in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to cause a denial of service and execute arbitrary code via untrusted data to the unserialize function that may trigger "information disclosure, double-free and negative reference index array underflow" results. El código de deserialización en PHP anteriores a 4.3.10 y PHP 5.x hasta 5.0.2 permite a atacantes remotos causar una denegación de servicio y ejecutar código de su elección mediante datos "no de confianza" ... • http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00029.html • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 8%CPEs: 65EXPL: 0CVE-2004-1065
https://notcve.org/view.php?id=CVE-2004-1065
22 Dec 2004 — Buffer overflow in the exif_read_data function in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to execute arbitrary code via a long section name in an image file. Desbordamiento de búfer en la función exif_read_data de PHP anteriores a 4.3.10 y PHP 5.x hasta 5.0.2 permite a atacantes remotos ejecutar código arbitrario mediante un nombre de sección largo en un fichero de imagen. • http://msgs.securepoint.com/cgi-bin/get/bugtraq0412/157.html •
CVSS: 10.0EPSS: 24%CPEs: 2EXPL: 2CVE-2004-1018 – PHP 3/4/5 - Multiple Local/Remote Vulnerabilities
https://notcve.org/view.php?id=CVE-2004-1018
08 Dec 2004 — Multiple integer handling errors in PHP before 4.3.10 allow attackers to bypass safe mode restrictions, cause a denial of service, or execute arbitrary code via (1) a negative offset value to the shmop_write function, (2) an "integer overflow/underflow" in the pack function, or (3) an "integer overflow/underflow" in the unpack function. NOTE: this issue was originally REJECTed by its CNA before publication, but that decision is in active dispute. This candidate may change significantly in the future as a re... • https://www.exploit-db.com/exploits/24854 •
CVSS: 10.0EPSS: 1%CPEs: 3EXPL: 0CVE-2004-1063
https://notcve.org/view.php?id=CVE-2004-1063
08 Dec 2004 — PHP 4.x to 4.3.9, and PHP 5.x to 5.0.2, when running in safe mode on a multithreaded Unix webserver, allows local users to bypass safe_mode_exec_dir restrictions and execute commands outside of the intended safe_mode_exec_dir via shell metacharacters in the current directory name. NOTE: this issue was originally REJECTed by its CNA before publication, but that decision is in active dispute. This candidate may change significantly in the future as a result of further discussion. ** RECHAZADA ** No usar este ... • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000915 •