PHP Vulnerabilities !

Posted on Thursday, December 16, 2004 @ 21:31:09 UTC in Security
by Raven

PHP version 4.3.9 is vulnerable to meta character attacks. The bug could enable an attacker to read arbitrary files from the filesystem of a webserver that hosts PHP scripts.

In addition PHP versions 4.3.6 until 4.3.9 as well as PHP versions 5.0.0 until 5.0.2 contain a bug that enables an attacker to manipulate the file name of uploaded files to perform directory traversal.

While both vulnerabilities exist in windows and unix platform versions of PHP, they can only be successfully exploited on windows systems.

For more information on these vulnerabilities, see the SecurityFocus page.

You should update your version of PHP quickly!
 
 
click Related        click Share
 
News ©

Site Info

Last SeenLast Seen
  • neralex
  • nextgen
Server TrafficServer Traffic
  • Total: 481,638,271
  • Today: 5,573
Server InfoServer Info
  • Mar 29, 2024
  • 05:17 am UTC