Format string vulnerability in Hashcash 1.16 allows remote attackers to cause a denial of service (memory consumption) and possibly execute arbitrary code via format string specifiers in a reply address, which is not properly handled when printing the header.
Max CVSS
7.5
EPSS Score
1.81%
Published
2005-03-06
Updated
2008-09-05
Heap-based buffer overflow in the array_push function in hashcash.c for Hashcash before 1.21 might allow attackers to execute arbitrary code via crafted entries.
Max CVSS
7.5
EPSS Score
2.02%
Published
2006-06-27
Updated
2017-07-20
PHP remote file inclusion vulnerability in server.php in the Hashcash Component (com_hashcash) 1.2.1 for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Max CVSS
6.8
EPSS Score
8.08%
Published
2006-07-21
Updated
2017-10-19
3 vulnerabilities found