Php Exploits

1,334 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-118209 EXPLOITDB php VERIFIED
Zoom Player Pro 3.30 - '.m3u' Local Buffer Overflow (SEH)
by Nine:Situations:Group
CVE-2009-1516 EXPLOITDB php VERIFIED
Icewarp Merak Mail Server - Memory Corruption
Stack-based buffer overflow in the IceWarpServer.APIObject ActiveX control in api.dll in IceWarp Merak Mail Server 9.4.1 might allow context-dependent attackers to execute arbitrary code via a large value in the second argument to the Base64FileEncode method, as possibly demonstrated by a web application that accepts untrusted input for this method.
by Nine:Situations:Group
EIP-2026-109128 EXPLOITDB php VERIFIED
LightBlog 9.9.2 - 'register.php' Remote Code Execution
by EgiX
EIP-2026-106509 EXPLOITDB php VERIFIED
Dokeos Lms 1.8.5 - 'whoisonline.php' PHP Code Injection
by EgiX
EIP-2026-107369 EXPLOITDB php VERIFIED
Geeklog 1.5.2 - 'usersettings.php' SQL Injection
by Nine:Situations:Group::bookoo
EIP-2026-107367 EXPLOITDB php VERIFIED
Geeklog 1.5.2 - 'savepreferences()/*blocks[]' SQL Injection
by Nine:Situations:Group
EIP-2026-118592 EXPLOITDB php VERIFIED
FTPDMIN 0.96 (Windows XP SP3) - 'RNFR' Remote Buffer Overflow
by surfista
EIP-2026-104702 EXPLOITDB php VERIFIED
PHP 5.2.9 cURL - 'Safe_mode' / 'open_basedir' Restriction Bypass
by Maksymilian Arciemowicz
EIP-2026-107368 EXPLOITDB php VERIFIED
Geeklog 1.5.2 - 'SEC_authenticate()' SQL Injection
by Nine:Situations:Group
EIP-2026-109064 EXPLOITDB php VERIFIED
Lanius CMS 0.5.2 - Arbitrary File Upload
by EgiX
CVE-2009-1282 EXPLOITDB php VERIFIED
Glfusion < 1.1.2 - SQL Injection
SQL injection vulnerability in private/system/lib-session.php in glFusion 1.1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the glf_session cookie parameter.
by Nine:Situations:Group
CVE-2009-1283 EXPLOITDB php VERIFIED
Glfusion < 1.1.2 - Cryptographic Issue
glFusion before 1.1.3 performs authentication with a user-provided password hash instead of a password, which allows remote attackers to gain privileges by obtaining the hash and using it in the glf_password cookie, aka "User Masquerading." NOTE: this can be leveraged with a separate SQL injection vulnerability to steal hashes.
by Nine:Situations:Group
CVE-2009-1226 EXPLOITDB php VERIFIED
Podcast Generator < 1.1 - Access Control
core/admin/delete.php in Podcast Generator 1.1 and earlier does not properly restrict access to administrative functions, which allows remote attackers to delete arbitrary files via the file parameter.
by BlackHawk
CVE-2009-1230 EXPLOITDB php VERIFIED
Podcast Generator < 1.1 - Code Injection
Static code injection vulnerability in index.php in Podcast Generator 1.1 and earlier allows remote authenticated administrators to inject arbitrary PHP code into config.php via the recent parameter in a config change action.
by BlackHawk
CVE-2009-1209 EXPLOITDB php VERIFIED
W3 Amaya - Memory Corruption
Stack-based buffer overflow in W3C Amaya Web Browser 11.1 allows remote attackers to execute arbitrary code via a script tag with a long defer attribute.
by Alfons Luja
CVE-2009-4796 EXPLOITDB php VERIFIED
glFusion <1.1.2 - SQL Injection
Multiple SQL injection vulnerabilities in the ExecuteQueries function in private/system/classes/listfactory.class.php in glFusion 1.1.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) order and (2) direction parameters to search.php.
by Nine:Situations:Group
EIP-2026-111084 EXPLOITDB php VERIFIED
PHPizabi 0.848b C1 HFP1-3 - Arbitrary File Upload
by EgiX
CVE-2008-6842 EXPLOITDB php VERIFIED
Pluck - Path Traversal
Directory traversal vulnerability in data/modules/blog/module_pages_site.php in Pluck 4.6.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the post parameter.
by Alfons Luja
EIP-2026-111085 EXPLOITDB php VERIFIED
PHPizabi 0.848b C1 HFP1-3 - Remote Command Execution
by YOUCODE
CVE-2009-1068 EXPLOITDB php VERIFIED
Bsplayer Bs.player - Memory Corruption
Stack-based buffer overflow in BS.Player (bsplayer) 2.32 Build 975 Free and 2.34 Build 980 PRO and earlier allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a long hostname in a .bsl playlist file.
by Nine:Situations:Group
CVE-2009-1039 EXPLOITDB php VERIFIED
Cdex - Memory Corruption
Buffer overflow in CDex 1.70b2 allows remote attackers to execute arbitrary code via a crafted Info header in an Ogg Vorbis (.ogg) file.
by Nine:Situations:Group
EIP-2026-108374 EXPLOITDB php VERIFIED
Joomla! Component com_iJoomla_archive - Blind SQL Injection
by Stack
EIP-2026-108328 EXPLOITDB php VERIFIED
Joomla! Component com_digistore - 'pid' Blind SQL Injection
by InjEctOr5
CVE-2008-6178 EXPLOITDB php VERIFIED
Fckeditor - Code Injection
Unrestricted file upload vulnerability in editor/filemanager/browser/default/connectors/php/connector.php in FCKeditor 2.2, as used in Falt4 CMS, Nuke ET, and other products, allows remote attackers to execute arbitrary code by creating a file with PHP sequences preceded by a ZIP header, uploading this file via a FileUpload action with the application/zip content type, and then accessing this file via a direct request to the file in UserFiles/File/, probably a related issue to CVE-2005-4094. NOTE: some of these details are obtained from third party information.
by Sp3shial
CVE-2009-0528 EXPLOITDB php VERIFIED
Rhadrix If-CMS <2.07 - SQL Injection
SQL injection vulnerability in frame.php in Rhadrix If-CMS 2.07 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
by darkjoker
By Source
All 1,334 Exploitdb 50,123 Writeup 46,610 Nomisec 21,121 Metasploit 3,189 Github 2,231 Vulncheck_xdb 900 Inthewild 518 Gitlab 438 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,731 c 3,550 perl 2,854 html 2,054 php 1,334 bash 459 java 359 javascript 259 c++ 245 shell 68 go 41 postscript 25 xml 24