Php Exploits

1,334 exploits tracked across all sources.

Sort: Activity Stars
CVE-2010-1130 EXPLOITDB php VERIFIED
PHP <5.2.13, 5.3.1 - Info Disclosure
session.c in the session extension in PHP before 5.2.13, and 5.3.1, does not properly interpret ; (semicolon) characters in the argument to the session_save_path function, which allows context-dependent attackers to bypass open_basedir and safe_mode restrictions via an argument that contains multiple ; characters in conjunction with a .. (dot dot).
by Grzegorz Stachowiak
EIP-2026-105261 EXPLOITDB php VERIFIED
ASCET Interactive Huski CMS - 'i' Local File Inclusion
by Wireghoul
EIP-2026-108172 EXPLOITDB php
Joomla! 1.5.12 - read/exec Remote files
by Nikoal Petrov
EIP-2026-108171 EXPLOITDB php
Joomla! 1.5.12 - Connect Back
by Nikola Petrov
CVE-2010-1073 EXPLOITDB php
Joomla! - SQL Injection
SQL injection vulnerability in the jEmbed-Embed Anything (com_jembed) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a summary action to index.php.
by FL0RiX
EIP-2026-108278 EXPLOITDB php VERIFIED
Joomla! Component com_bfsurvey_pro - 'catid' Blind SQL Injection
by FL0RiX
EIP-2026-108268 EXPLOITDB php
Joomla! Component com_aprice - Blind SQL Injection
by FL0RiX
EIP-2026-105425 EXPLOITDB php
bbScript 1.1.2.1 - 'id' Blind SQL Injection
by cOndemned
EIP-2026-107248 EXPLOITDB php VERIFIED
FreeWebShop 2.2.9 R2 - Multiple Remote Vulnerabilities
by Akita Software Security
CVE-2007-4652 EXPLOITDB php VERIFIED
PHP <5.2.4 - Auth Bypass
The session extension in PHP before 5.2.4 might allow local users to bypass open_basedir restrictions via a session file that is a symlink.
by Maksymilian Arciemowicz
CVE-2009-4142 EXPLOITDB php VERIFIED
PHP <5.2.12 - XSS
The htmlspecialchars function in PHP before 5.2.12 does not properly handle (1) overlong UTF-8 sequences, (2) invalid Shift_JIS sequences, and (3) invalid EUC-JP sequences, which allows remote attackers to conduct cross-site scripting (XSS) attacks by placing a crafted byte sequence before a special character.
CVE-2009-4142 EXPLOITDB php VERIFIED
PHP <5.2.12 - XSS
The htmlspecialchars function in PHP before 5.2.12 does not properly handle (1) overlong UTF-8 sequences, (2) invalid Shift_JIS sequences, and (3) invalid EUC-JP sequences, which allows remote attackers to conduct cross-site scripting (XSS) attacks by placing a crafted byte sequence before a special character.
EIP-2026-108410 EXPLOITDB php
Joomla! Component com_joomgallery 1.5.x - &func Incorrect Flood Filter
by Jbyte
CVE-2009-4195 EXPLOITDB php VERIFIED
Adobe Illustrator <14.0.0 - Buffer Overflow
Buffer overflow in Adobe Illustrator CS4 14.0.0, CS3 13.0.3 and earlier, and CS3 13.0.0 allows remote attackers to execute arbitrary code via a long DSC comment in an Encapsulated PostScript (.eps) file. NOTE: some of these details are obtained from third party information.
by pyrokinesis
EIP-2026-113133 EXPLOITDB php VERIFIED
Vivid Ads Shopping Cart - 'prodid' SQL Injection
by Yakir Wizman
CVE-2011-4906 EXPLOITDB CRITICAL php VERIFIED
Tinybrowser < 1.5.13 - Unrestricted File Upload
Tiny browser in TinyMCE 3.0 editor in Joomla! before 1.5.13 allows file upload and arbitrary PHP code execution.
by daath
CVSS 9.8
EIP-2026-104753 EXPLOITDB php VERIFIED
PHP 5.2.11/5.3.0 - Multiple Vulnerabilities
by Maksymilian Arciemowicz
EIP-2026-111589 EXPLOITDB php VERIFIED
PunBB Extension Attachment 1.0.2 - SQL Injection
by puret_t
CVE-2009-3804 EXPLOITDB php VERIFIED
Runcms - SQL Injection
Multiple SQL injection vulnerabilities in modules/forum/post.php in RunCMS 2M1 allow remote authenticated users to execute arbitrary SQL commands via (1) the pid parameter, which is not properly handled by the store function in modules/forum/class/class.forumposts.php, or (2) the topic_id parameter.
by Nine:Situations:Group::bookoo
EIP-2026-116287 EXPLOITDB php VERIFIED
Spider Solitaire - Denial of Service (PoC)
by SirGod
CVE-2009-3691 EXPLOITDB php VERIFIED
IBM Informix Client SDK - Numeric Error
Multiple integer overflows in setnet32.exe 3.50.0.13752 in IBM Informix Client SDK 3.0 and 3.50 and Informix Connect Runtime 3.x allow remote attackers to execute arbitrary code via a .nfx file with a crafted (1) HostSize, and possibly (2) ProtoSize and (3) ServerSize, field that triggers a stack-based buffer overflow involving a crafted HostList field. NOTE: some of these details are obtained from third party information.
by bruiser
CVE-2009-2269 EXPLOITDB php VERIFIED
Empire CMS 5.1 - SQL Injection
SQL injection vulnerability in Empire CMS 5.1 allows remote attackers to execute arbitrary SQL commands via the bid parameter to the default URI under e/tool/gbook/.
by Securitylab Security Research
CVE-2009-3342 EXPLOITDB php VERIFIED
Alphaplug Com Alphauserpoints - SQL Injection
SQL injection vulnerability in frontend/assets/ajax/checkusername.php in the AlphaUserPoints (com_alphauserpoints) component 1.5.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the username2points parameter.
by jdc
CVE-2009-3271 EXPLOITDB php VERIFIED
Apple Safari - Improper Input Validation
Apple Safari on iPhone OS 3.0.1 allows remote attackers to cause a denial of service (application crash) via a long tel: URL in the SRC attribute of an IFRAME element.
by cloud
CVE-2009-3322 EXPLOITDB php VERIFIED
Siemens Gigaset Se361 Wlan Router - Denial of Service
The Siemens Gigaset SE361 WLAN router allows remote attackers to cause a denial of service (device reboot) via a flood of crafted TCP packets to port 1723.
by crashbrz
By Source
All 1,334 Exploitdb 50,123 Writeup 46,593 Nomisec 21,119 Metasploit 3,189 Github 2,225 Vulncheck_xdb 900 Inthewild 518 Gitlab 438 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,728 c 3,550 perl 2,854 html 2,054 php 1,334 bash 459 java 359 javascript 256 c++ 245 shell 68 go 41 postscript 25 xml 24