MangoBery “Site_Path” Parameter Handling Remote PHP File Inclusion … - FrSIRT

MangoBery “Site_Path” Parameter Handling Remote PHP File Inclusion … - FrSIRT
MangoBery “Site_Path” Parameter Handling Remote PHP File Inclusion …FrSIRT, France - Mar 29, 2007These issues are due to input validation errors in various scripts (eg “boxes/quotes.php” or “templates/mangobery/footer.sample.php”) when processing the …CodeBB “phpbb_root_path” Parameter Handling Remote PHP File … FrSIRTAy System Web Content System “path[JavascriptEdit]” PHP File … FrSIRTaBitWhizzy “d” Parameter Directory Listing and Cross Site … FrSIRTFrSIRTall 6 news articles

March 31, 2007 @ 10:21 AM · Filed under Uncategorized
Permalink        No Comments

CodeGear Ships Delphi for PHP (LinuxElectrons)

CodeGear Ships Delphi for PHP (LinuxElectrons)
SCOTTS VALLEY , Calif. ? CodeGear has said that DelphiŪ for PHP ? an integrated visual Rapid Application Development (RAD) environment for the popular PHP Web development language ? is now shipping worldwide.

March 31, 2007 @ 10:21 AM · Filed under Uncategorized
Permalink        No Comments

Spammers hack PHP websites to make money from online pharmacies

Spammers hack PHP websites to make money from online pharmacies
Spam campaigns advertising internet pharmacies peddling drugs are directing users to webpages hosted on hacked innocent websites that then automatically redirect surfers to the online store. The hacked websites are all using PHP a scripting language used by many internet sites which has suffered from serious security vulnerabilities in the past. Because the spam messages point to an innocent website rather than directly to the online pharmacy there is a risk that sites unaware of the spam campaign may have their reputations tarnished. Anti-spam products often use information about the webpage pointed to by an email as an indicator of whether the message is spam or not.

March 31, 2007 @ 10:21 AM · Filed under Uncategorized
Permalink        No Comments

MOPB-35-2007:PHP 4 zip_entry_read() Integer Overflow Vulnerability - Zone-H

MOPB-35-2007:PHP 4 zip_entry_read() Integer Overflow Vulnerability - Zone-H
MOPB-35-2007:PHP 4 zip_entry_read() Integer Overflow VulnerabilityZone-H, Estonia - Mar 28, 2007The attached exploit consists of a small PHP POC and the supplied ZIP archive that contains the data that will overflow the buffer. …

March 30, 2007 @ 10:21 AM · Filed under Uncategorized
Permalink        No Comments

Article: Building Dynamic Web Pages with Polymorphism in PHP 5 - SDA India Magazine

Article: Building Dynamic Web Pages with Polymorphism in PHP 5 - SDA India Magazine
Article: Building Dynamic Web Pages with Polymorphism in PHP 5SDA India Magazine, Singapore - 23 hours agoIn the previous article Alejandro PHP 5 and polymorphism. He demonstrated how to apply polymorphic design. He also depicted the late binding in PHP 5, or, …

March 30, 2007 @ 10:21 AM · Filed under Uncategorized
Permalink        No Comments

MangoBery “Site_Path” Parameter Handling Remote PHP File Inclusion … - FrSIRT

MangoBery “Site_Path” Parameter Handling Remote PHP File Inclusion … - FrSIRT
MangoBery “Site_Path” Parameter Handling Remote PHP File Inclusion …FrSIRT, France - 22 hours agoThese issues are due to input validation errors in various scripts (eg “boxes/quotes.php” or “templates/mangobery/footer.sample.php”) when processing the …CodeBB “phpbb_root_path” Parameter Handling Remote PHP File … FrSIRTAy System Web Content System “path[JavascriptEdit]” PHP File … FrSIRTSB-WebSoft Addressbook for PHP-Nuke “module_name” Local File … FrSIRTFrSIRT - FrSIRTall 11 news articles

March 30, 2007 @ 10:21 AM · Filed under Uncategorized
Permalink        No Comments

MOPB-35-2007:PHP 4 zip_entry_read() Integer Overflow Vulnerability - Zone-H

MOPB-35-2007:PHP 4 zip_entry_read() Integer Overflow Vulnerability - Zone-H
MOPB-35-2007:PHP 4 zip_entry_read() Integer Overflow VulnerabilityZone-H, Estonia - 18 hours agoThe attached exploit consists of a small PHP POC and the supplied ZIP archive that contains the data that will overflow the buffer. …

March 29, 2007 @ 10:21 AM · Filed under Uncategorized
Permalink        No Comments

How To Set Up suPHP On A Debian ISPConfig Server

How To Set Up suPHP On A Debian ISPConfig Server
Falko Timme writes “With this guide I explain how to set up suPHP on a Debian based ISPConfig server with PHP 4. When you have configured suPHP on your ISPConfig server, you are able to run the PHP scripts under the admin user of the website instead of the Apache user.”

March 29, 2007 @ 10:21 AM · Filed under Uncategorized
Permalink        No Comments

El mes de los fallos en PHP ha desvelado ya 18 vulnerabilidades sin parche

El mes de los fallos en PHP ha desvelado ya 18 vulnerabilidades sin parche
El mes de los fallos en PHP ha publicado ya 35 vulnerabilidades en 28 das. 30 de ellos han sido encontrados en PHP tres en la plataforma Zend y una en el mdulo mod_security de Apache (los que el propio autor llama “bonus”).

March 29, 2007 @ 10:21 AM · Filed under Uncategorized
Permalink        No Comments

IceBB Avatar SQL Injection and PHP Code Execution - Secunia

IceBB Avatar SQL Injection and PHP Code Execution - Secunia
IceBB Avatar SQL Injection and PHP Code ExecutionSecunia, UK - Mar 27, 2007This can be exploited to execute arbitrary PHP code by uploading malicious PHP files. 2) The filename of uploaded avatars is not properly sanitised before …PBLang admin2.php PHP Code Execution Secuniaall 4 news articles

March 28, 2007 @ 10:21 AM · Filed under Uncategorized
Permalink        No Comments

Next Page »