[ home ] [ contents ] [ platforms ] [ shellcode ] [ search ] [ cracker ] [ links ] [ rss ] [ archive ]
milw0rm
[ PHP ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-05-26 PHP <= 5.2.9 Local Safemod Bypass Exploit (win32) 10859 R D Abysssec
2009-05-07 PHP mb_ereg(i)_replace() Evaluate Replacement String Vulnerability 4804 R D 80vul
2009-01-02 PHP <= 5.2.8 gd library - imageRotate() Information Leak Vulnerability 7300 R D Hamid Ebadi
2008-12-17 PHP python extension safe_mode Bypass Local Vulnerability 6392 R D Amir Salmani
2008-12-09 PHP safe_mode bypass via proc_open() and custom environment 9600 R D gat3way
2008-11-20 PHP 5.2.6 (error_log) safe_mode Bypass Vulnerability 11643 R D SecurityReason
2008-05-27 PHP 5.2.6 sleep() Local Memory Exhaust Exploit 8978 R D Gogulas
2007-10-22 PHP 5.x COM functions safe_mode and disable_function bypass 11646 R D shinnai
2007-10-11 PHP 5.2.4 ionCube extension safe_mode / disable_functions Bypass 9690 R D shinnai
2007-09-10 PHP <= 4.4.7 / 5.2.3 MySQL/MySQLi Safe Mode Bypass Vulnerability 23496 R D Mattias Bengtsson
2007-08-27 PHP <= 5.2.0 (php_iisfunc.dll) Local Buffer Overflow PoC (win32) 7250 R D boecke
2007-08-25 PHP Perl Extension Safe_mode Bypass Exploit 12254 R D NetJackal
2007-08-23 PHP 5.2.3 php_ntuser ntuser_getuserlist() Local Buffer Overflow PoC 7034 R D shinnai
2007-08-23 PHP FFI Extension 5.0.5 Local Safe_mode Bypass Exploit 6522 R D NetJackal
2007-08-22 PHP <= 5.2.3 (php_win32sti) Local Buffer Overflow Exploit 6398 R D Inphex
2007-08-22 PHP <= 5.2.3 (php_win32sti) Local Buffer Overflow Exploit (2) 6542 R D NetJackal
2007-08-18 PHP <= 5.2.0 (php_win32sti) Local Buffer Overflow PoC (win32) 6523 R D boecke
2007-08-09 PHP <= 5.2.3 snmpget() object id Local Buffer Overflow Exploit (EDI) 9205 R D Inphex
2007-08-08 PHP mSQL (msql_connect) Local Buffer Overflow Exploit 9895 R D Inphex
2007-08-06 PHP mSQL (msql_connect) Local Buffer Overflow PoC 6851 R D NetJackal
2007-07-27 PHP 5.x (win32service) Local Safe Mode Bypass Exploit 9565 R D NetJackal
2007-07-26 PHP php_gd2.dll imagepsloadfont Local Buffer Overflow PoC 6440 R D r0ut3r
2007-07-24 PHP 5.2.3 win32std ext. safe_mode/disable_functions Protections Bypass 8856 R D shinnai
2007-07-20 PHP <= 5.2.3 snmpget() object id Local Buffer Overflow Exploit 8952 R D shinnai
2007-07-14 PHP 5.2.3 glob() Denial of Service Exploit 12389 R D shinnai
2007-07-12 PHP 5.2.3 bz2 com_print_typeinfo() Denial of Service Exploit 8399 R D shinnai
2007-06-19 PHP 5.2.3 Tidy extension Local Buffer Overflow Exploit 16218 R D rgod
2007-03-27 PHP 4.4.5 / 4.4.6 session_decode() Double Free Exploit PoC 9887 R D Stefan Esser
2007-03-25 PHP < 4.4.5 / 5.2.1 _SESSION unset() Local Exploit 7594 R D Stefan Esser
2007-03-25 PHP < 4.4.5 / 5.2.1 _SESSION Deserialization Overwrite Exploit 7283 R D Stefan Esser
2007-03-25 PHP 5.2.1 with PECL phpDOC Local Buffer Overflow Exploit 7888 R D rgod
2007-03-23 PHP 5.2.1 unserialize() Local Information Leak Exploit 6782 R D Stefan Esser
2007-03-20 PHP <= 4.4.6 / 5.2.1 ext/gd Already Freed Resources Usage Exploit 6876 R D Stefan Esser
2007-03-20 PHP <= 5.2.1 hash_update_file() Freed Resource Usage Exploit 7987 R D Stefan Esser
2007-03-19 PHP 5.2.0 header() Space Trimming Buffer Underflow Exploit (MacOSX) 7798 R D Stefan Esser
2007-03-16 PHP <= 4.4.6 / 5.2.1 array_user_key_compare() ZVAL dtor Local Exploit 7642 R D Stefan Esser
2007-03-15 PHP <= 4.4.6 ibase_connect() Local Buffer Overflow Exploit 6472 R D rgod
2007-03-14 PHP <= 5.2.1 session_regenerate_id() Double Free Exploit 5786 R D Stefan Esser
2007-03-14 PHP 5.2.0/5.2.1 Rejected Session ID Double Free Exploit 7888 R D Stefan Esser
2007-03-12 PHP 5.2.0 ext/filter Space Trimming Buffer Underflow Exploit (MacOSX) 6587 R D Stefan Esser
2007-03-10 PHP <= 5.2.0 ext/filter FDF Post Filter Bypass Exploit 9379 R D Stefan Esser
2007-03-09 PHP 4.4.6 snmpget() object id Local Buffer Overflow Exploit PoC 8346 R D rgod
2007-03-09 PHP 5.2.0 / PHP with PECL ZIP <= 1.8.3 zip:// URL Wrapper BoF Exploit 7745 R D Stefan Esser
2007-03-09 PHP 4.4.6 cpdf_open() Local Source Code Discslosure PoC 6996 R D rgod
2007-03-08 PHP 4.4.6 crack_opendict() Local Buffer Overflow Exploit PoC 8214 R D rgod
2007-03-07 PHP <= 5.2.1 substr_compare() Information Leak Exploit 6217 R D Stefan Esser
2007-03-07 PHP < 4.4.5 / 5.2.1 (shmop Functions) Local Code Execution Exploit 6648 R D Stefan Esser
2007-03-07 PHP < 4.4.5 / 5.2.1 (shmop) SSL RSA Private-Key Disclosure Exploit 6877 R D Stefan Esser
2007-03-07 PHP COM extensions (inconsistent Win32) safe_mode Bypass Exploit 7073 R D n/a
2007-03-05 PHP <= 4.4.6 mssql_[p]connect() Local Buffer Overflow Exploit 8883 R D rgod
2007-03-04 PHP wddx_deserialize() String Append Crash Exploit 4527 R D Stefan Esser
2007-03-04 PHP 4.4.3 - 4.4.6 phpinfo() Remote XSS Vulnerability 15498 R D Stefan Esser
2007-03-04 PHP < 4.4.5 / 5.2.1 php_binary Session Deserialization Information Leak 6856 R D Stefan Esser
2007-03-04 PHP < 4.4.5 / 5.2.1 WDDX Session Deserialization Information Leak 5994 R D Stefan Esser
2007-03-02 PHP <= 4.4.4 unserialize() ZVAL Reference Counter Overflow Exploit PoC 6582 R D Stefan Esser
2007-03-01 PHP 4 Userland ZVAL Reference Counter Overflow Exploit PoC 5828 R D Stefan Esser
2006-11-27 PHP <= 4.4.4/5.1.6 htmlentities() Local Buffer Overflow PoC 7217 R D Nick Kezhaya
2006-08-16 PHP <= 4.4.3 / 5.1.4 (sscanf) Local Buffer Overflow Exploit 13728 R D andi
2006-08-08 PHP <= 4.4.3 / 5.1.4 (objIndex) Local Buffer Overflow Exploit PoC 10512 R D Heintz
2006-01-05 PHP <= 4.4.0 (mysql_connect function) Local Buffer Overflow Exploit 12903 R D mercenary
2004-12-28 PHP <= 4.3.7 openlog() Buffer Overflow Exploit 8923 R D The Warlock [BhQ]
2004-11-27 PHP <= 4.3.7/ 5.0.0RC3 memory_limit Remote Exploit 10148 R D Gyan Chawdhary
2004-08-08 PHP (php-exec-dir) Patch Command Access Restriction Bypass 6363 R D VeNoMouS
2000-12-06 PHP 3.0.16/4.0.2 Remote Format Overflow Exploit 6988 R D Gneisenau





send all submissions to submit[at]milw0rm.com [gpg]
Copyright © 2004-2009 milw0rm