Forum Index Search Forum Register Log in
Current

7.0 Production
build 6 Mar '07

7.1 Beta 5
build 7 Oct '07
A donation makes a contribution towards the time and effort that's going in to running this site.

Steffen

Contact:
My mail address is
at the top of the paypal form :

Your donations will help to keep this site alive and well.

PHP Vulnerabilities !

 
Post new topic   Reply to topic    Sambar Forum Index -> Coding & Script Corner
View previous topic :: View next topic  
Author Message
Steffen



Joined: 07 Jun 2004
Posts: 403
Location: Netherlands
PostPosted: Sat 18 Dec '04 15:49    Post subject: PHP Vulnerabilities ! Reply with quote
PHP version 4.3.9 is vulnerable to meta character attacks. The bug could enable an attacker to read arbitrary files from the filesystem of a webserver that hosts PHP scripts.

In addition PHP versions 4.3.6 until 4.3.9 as well as PHP versions 5.0.0 until 5.0.2 contain a bug that enables an attacker to manipulate the file name of uploaded files to perform directory traversal.

While both vulnerabilities exist in windows and unix platform versions of PHP, they can only be successfully exploited on windows systems.

For more information on these vulnerabilities, see the SecurityFocus page.

You should update your version of PHP to 4.3.10 or 5.0.3 quickly!
Back to top
View user's profile Visit poster's website

Post new topic   Reply to topic    Sambar Forum Index -> Coding & Script Corner
Page 1 of 1