Security - Ravens PHP Scripts

Ravens PHP Scripts: Security

PHP ini_restore() Security Bypass Vulnerability

Posted on Wednesday, October 11, 2006 @ 02:06:53 CDT in Security
by Raven

SECUNIA ADVISORY ID: SA22282

VERIFY ADVISORY: http://secunia.com/advisories/22282/

CRITICAL: Less critical

IMPACT: Security Bypass

WHERE: Local system

SOFTWARE:
PHP 5.1.x - http://secunia.com/product/6796/
PHP 5.0.x - http://secunia.com/product/3919/
PHP 4.4.x - http://secunia.com/product/5768/
PHP 4.3.x - http://secunia.com/product/922/

DESCRIPTION: Maksymilian Arciemowicz has reported a vulnerability in PHP, which can be exploited by malicious, local users to bypass certain security restrictions. Read More...

4images search_user SQL Injection Vulnerability

Posted on Tuesday, October 10, 2006 @ 19:09:10 CDT in Security
by Raven

SECUNIA ADVISORY ID: SA22349

VERIFY ADVISORY: http://secunia.com/advisories/22349/

CRITICAL: Moderately critical

IMPACT: Manipulation of data

WHERE: >From remote

SOFTWARE: 4images 1.x - http://secunia.com/product/8373/

DESCRIPTION: disfigure has reported a vulnerability in 4images, which can be exploited by malicious people to conduct SQL injection attacks. Read More...

phpBB User Viewed Posts Tracker phpbb_root_path File Inclusion

Posted on Tuesday, October 10, 2006 @ 19:04:41 CDT in Security
by Raven

SECUNIA ADVISORY ID: SA22305

VERIFY ADVISORY: http://secunia.com/advisories/22305/

CRITICAL: Highly critical

IMPACT: System access

WHERE: >From remote

SOFTWARE: User Viewed Posts Tracker 1.x (module for phpBB) - http://secunia.com/product/12231/

DESCRIPTION: XORON has reported a vulnerability in the User Viewed Posts Tracker module for phpBB, which can be exploited by malicious people to compromise a vulnerable system. Read More...

PHP Classifieds catid and catid_search SQL Injection Vulnerability

Posted on Tuesday, October 10, 2006 @ 18:58:53 CDT in Security
by Raven

SECUNIA ADVISORY ID: SA22264

VERIFY ADVISORY: http://secunia.com/advisories/22264/

CRITICAL: Moderately critical

IMPACT: Manipulation of data

WHERE: >From remote

SOFTWARE:

PHP Classifieds 7.x - http://secunia.com/product/12226/
PHP Classifieds 6.x - http://secunia.com/product/8084/

DESCRIPTION: Kzar has discovered some vulnerabilities in PHP Classifieds, which can be exploited by malicious people to conduct SQL injection attacks. Read More...

phpBB Security Suite IP Logger phpbb_root_path File Inclusion

Posted on Saturday, October 07, 2006 @ 03:37:31 CDT in Security
by Raven

SECUNIA ADVISORY ID: SA22290

VERIFY ADVISORY: http://secunia.com/advisories/22290/

CRITICAL: Highly critical

IMPACT: System access

WHERE: >From remote

SOFTWARE: Security Suite IP Logger 1.x (module for phpBB) - http://secunia.com/product/12224/ Read More...

Serv-U FTP Server OpenSSL Multiple Vulnerabilities

Posted on Saturday, October 07, 2006 @ 03:32:55 CDT in Security
by Raven

Serv-U FTP Server OpenSSL Multiple Vulnerabilities

SECUNIA ADVISORY ID: SA22284

VERIFY ADVISORY: http://secunia.com/advisories/22284/

CRITICAL: Highly critical

IMPACT: DoS, System access

WHERE: >From remote

SOFTWARE: Serv-U FTP Server 6.x - http://secunia.com/product/5878/ Read More...

PHP ini_restore() Security Bypass Vulnerability

4images search_user SQL Injection Vulnerability

phpBB User Viewed Posts Tracker phpbb_root_path File Inclusion

PHP Classifieds catid and catid_search SQL Injection Vulnerability

phpBB Security Suite IP Logger phpbb_root_path File Inclusion

Serv-U FTP Server OpenSSL Multiple Vulnerabilities

Site Info

Site Navigation

Partners

Recommended Sites

Old Articles

PHP *ini_restore()* Security Bypass Vulnerability

4images *search_user* SQL Injection Vulnerability

phpBB User Viewed Posts Tracker *phpbb_root_path* File Inclusion

PHP Classifieds *catid* and *catid_search* SQL Injection Vulnerability

phpBB Security Suite IP Logger *phpbb_root_path* File Inclusion

Serv-U FTP Server OpenSSL Multiple Vulnerabilities

Site Info

Site Navigation

Partners

Recommended Sites

Old Articles

PHP ini_restore() Security Bypass Vulnerability

4images search_user SQL Injection Vulnerability

phpBB User Viewed Posts Tracker phpbb_root_path File Inclusion

PHP Classifieds catid and catid_search SQL Injection Vulnerability

phpBB Security Suite IP Logger phpbb_root_path File Inclusion