Quantcast
Channel: Commentaires sur : PHP CVE-2011-2202
Browsing all 4 articles
Browse latest View live

Par : __ed

:0
:0
June 16, 2011, 7:14 am

Could you be more accurate on which version is affected by this vulnerability ? Thanks.

View Article
Search

Par : Krzysztof Kotowicz

:0
:0
June 17, 2011, 3:33 am

Hi! I’m the original reporter. The description of this vulnerability is wrong – you can create a file in root directory with arbitrary name & contents, not delete it. @__ed As for the versions...

View Article

Par : Krzysztof Kotowicz

:0
:0
June 17, 2011, 3:36 am

Successful exploitability of this vulnerability is pretty hard as you need both a vulnerable application (though i’ve found a few in google code search) and a vulnerable php set up. I was able to find...

View Article

Par : Krzysztof Kotowicz

:0
:0
June 18, 2011, 4:21 am

Demo is here: http://blog.kotowicz.net/2011/06/file-path-injection-in-php-536-file.html

View Article
Browsing all 4 articles
Browse latest View live
Search