PHP : Security Vulnerabilities, CVEs, Published In May 2006
The cURL library (libcurl) in PHP 4.4.2 and 5.1.4 allows attackers to bypass safe mode and read files via a file:// request containing null characters.
Max CVSS
2.1
EPSS Score
0.09%
Published
2006-05-29
Updated
2017-07-20
Cross-site scripting (XSS) vulnerability in index.php in Directory Listing Script allows remote attackers to inject arbitrary web script or HTML via the dir parameter.
Max CVSS
4.3
EPSS Score
0.36%
Published
2006-05-16
Updated
2011-03-08
2 vulnerabilities found