Showing 51 - 75 of 131

Files from Stefan Esser

Email address	sesser at hardened-php.net
First Active	2001-12-26
Last Active	2017-10-27

wordpress-sqltruncate.txt: Posted Sep 12, 2008; Authored by Stefan Esser | Site sektioneins.de; Wordpress versions 2.6.1 and below suffer from a user_login column SQL truncation vulnerability that allows for blog compromise.; tags | advisory, sql injection; SHA-256 | 3a9c6809e48a3cef546d2eef012eb9151dfd7af5563cafc7b180bc1895e894dc; Download | Favorite | View

joomla-weakpassword.txt: Posted Sep 11, 2008; Authored by Stefan Esser | Site sektioneins.de; Joomla versions 1.5.7 and below suffer form a weak random password reset token vulnerability.; tags | advisory; SHA-256 | f3a05de176b98357326a615c8a735e3cceca49d45366d2ac92f9ebe2230f981f; Download | Favorite | View

SE-2008-03.txt: Posted May 6, 2008; Authored by Stefan Esser | Site sektioneins.de; PHP versions 5.2.5 and below and 4.4.8 and below suffer from a multibyte shell command escaping bypass vulnerability.; tags | advisory, shell, php, bypass; SHA-256 | 193d2a7f3caa1f5c99beec37bed621ce36b1e889636d309ac31f2444d0ac76a6; Download | Favorite | View

SE-2008-02.txt: Posted May 6, 2008; Authored by Stefan Esser | Site sektioneins.de; PHP versions 5.2.5 and below and 4.4.8 and below suffer from a weak random number seed vulnerability in GENERATE_SEED().; tags | advisory, php; SHA-256 | e595aa1de24282de7e212092e11553cf0994f87464e902dad2915e80f4e51e96; Download | Favorite | View

SE-2008-01.txt: Posted Feb 21, 2008; Authored by Stefan Esser | Site sektioneins.de; PunBB versions 1.2.16 and below suffer from a blind password recovery vulnerability.; tags | advisory; SHA-256 | 266e4deb3a2bb686ad163561fca93073cea300602c5aa7748b35c80590a85602; Download | Favorite | View

SE-2007-01.txt: Posted Oct 29, 2007; Authored by Stefan Esser | Site sektioneins.de; TikiWiki versions 1.9.8.1 and below suffer from a remote PHP code evaluation vulnerability.; tags | advisory, remote, php; advisories | CVE-2007-5682; SHA-256 | 1e448247e42b5213f25a1930d3dc3f1fbd07ce7769c7aa65080d354bf82a5b72; Download | Favorite | View

MOPB-sessiondecode.txt: Posted Mar 29, 2007; Authored by Stefan Esser | Site hardened-php.net; Month of PHP Bugs - PHP version 4.4.5 and 4.4.6 session_decode() double free proof of concept exploit.; tags | exploit, php, proof of concept; SHA-256 | 7bfd3521b829b12255417e9bda7344352dd74f548e46d687379a1e8cecdf7732; Download | Favorite | View

MOPB-sessiondeser.txt: Posted Mar 27, 2007; Authored by Stefan Esser | Site hardened-php.net; Month of PHP Bugs - PHP versions below 4.4.5 and below 5.2.1 _SESSION deserialization overwrite exploit.; tags | exploit, php; SHA-256 | 4f70f3805a241e4e1bfc7ee78ccb54d457fe1f492e69ce270a795841a777c520; Download | Favorite | View

MOPB-sessionunset.txt: Posted Mar 27, 2007; Authored by Stefan Esser | Site hardened-php.net; Month of PHP Bugs - PHP versions below 4.4.5 and below 5.2.1 _SESSION unset() local exploit.; tags | exploit, local, php; SHA-256 | 144846985e449305428e536afc4d0ed82c7b050abd8235fb624cc6e493a74a36; Download | Favorite | View

MOPB-unserialize.txt: Posted Mar 24, 2007; Authored by Stefan Esser | Site hardened-php.net; Month of PHP Bugs - PHP version 5.2.1 unserialize() local information leak exploit.; tags | exploit, local, php; SHA-256 | bd27672c81316d5a4e32cb45c7c4a33b54801eb86e6b5323314ef4ee2a136c6b; Download | Favorite | View

MOPB-hash.txt: Posted Mar 21, 2007; Authored by Stefan Esser | Site hardened-php.net; Month of PHP Bugs - PHP versions 5.2.1 and below hash_update_file() freed resource usage exploit.; tags | exploit, php; SHA-256 | e652b275f5af74b30e28ae26e1d3ae9676875b9e3511eb6ab4432ae190113864; Download | Favorite | View

MOPB-already.txt: Posted Mar 21, 2007; Authored by Stefan Esser | Site hardened-php.net; Month of PHP Bugs - PHP versions 4.4.6 and below and versions 5.2.1 and below ext/gd already fixed resources usage exploit.; tags | exploit, php; SHA-256 | d59910398469036df4bf066bb414d7e6b581ed535fbec4ab6630a641c607ebfe; Download | Favorite | View

MOPB-header.txt: Posted Mar 20, 2007; Authored by Stefan Esser | Site hardened-php.net; Month of PHP Bugs - PHP version 5.2.0 header() space trimming buffer underflow exploit for Mac OSX.; tags | exploit, php; systems | apple; SHA-256 | 66faa3472d9c2fd56e09a2960f84902bc2119e9e70e5e4f04f55514d9f588c22; Download | Favorite | View

MOPB-array.txt: Posted Mar 20, 2007; Authored by Stefan Esser | Site hardened-php.net; Month of PHP Bugs - PHP versions 4.4.6 and below and versions 5.2.1 and below array_user_key_compare() ZVAL dtor local exploit.; tags | exploit, local, php; SHA-256 | 7951ffcb0d45030446a844d98707fec746f3d86a0f267daa38deeb816d14b6c3; Download | Favorite | View

MOPB-session.txt: Posted Mar 20, 2007; Authored by Stefan Esser | Site hardened-php.net; Month of PHP Bugs - PHP versions 5.2.1 and below session_regenerate_id() double free exploit.; tags | exploit, php; SHA-256 | fc557aadfbec5b0451270b714f5328ff862f73abe0aec6178a0cd749635df5a6; Download | Favorite | View

MOPB-rejected.txt: Posted Mar 20, 2007; Authored by Stefan Esser | Site hardened-php.net; Month of PHP Bugs - PHP version 5.2.0 and 5.2.1 rejected session ID double free exploit.; tags | exploit, php; SHA-256 | 63677ca8ee5a23a258092873b9ca58ce40aaf13e64de9b74d8aa13e5eb4c7cf6; Download | Favorite | View

MOPB-extfilter.txt: Posted Mar 20, 2007; Authored by Stefan Esser | Site hardened-php.net; Month of PHP Bugs - PHP version 5.2.0 ext/filter space trimming buffer underflow exploit for Mac OSX.; tags | exploit, php; systems | apple; SHA-256 | 2021590ddfd8b9a92e44b435ed7b810d0ddd652bf3d5d9ddb9e2c67b57e44995; Download | Favorite | View

MOPB-fdf.txt: Posted Mar 20, 2007; Authored by Stefan Esser | Site hardened-php.net; Month of PHP Bugs - PHP versions 5.2.0 and below ext/filter FDF post filter bypass exploit.; tags | exploit, php; SHA-256 | 2f4ac341948a2d6e42c0596dd2f9dcde20aab419cda5462546a951c2de441966; Download | Favorite | View

MOPB-pecl.txt: Posted Mar 20, 2007; Authored by Stefan Esser | Site hardened-php.net; Month of PHP Bugs - PHP 5.2.0 / PHP with PECL ZIP versions 1.8.3 and below zip:// URL wrapper buffer overflow exploit.; tags | exploit, overflow, php; SHA-256 | 9ab5f10c9a1c3b4db58904a3dd9e3c4edcb9934eec090d4da92ea41c9a5831cb; Download | Favorite | View

MOPB-substr.txt: Posted Mar 20, 2007; Authored by Stefan Esser | Site hardened-php.net; Month of PHP Bugs - PHP versions 5.2.1 and below substr_compare() information leak exploit.; tags | exploit, php; SHA-256 | 13745c954f00bdb48fb1188def122aa897683e1d76714bd699ea886c5890b4e8; Download | Favorite | View

modsec-bypass.txt: Posted Mar 9, 2007; Authored by Stefan Esser | Site hardened-php.net; mod_security versions 2.1.0 and below suffer from a POST rules bypass vulnerability.; tags | exploit, bypass; SHA-256 | b3244d2e4f4855891b5b0d5e7fdac24d64fef9bb75f24aacf1299123e1bdf3bb; Download | Favorite | View

esser-php.txt: Posted Mar 9, 2007; Authored by Stefan Esser | Site hardened-php.net; PHP versions 4.4.5 and below and 5.2.1 and below shmop SSL RSA private key disclosure exploit.; tags | exploit, php; SHA-256 | 534c6aa03aa244af3fb2bbddad9f72491afa2df620545dc250817d60a24cf3cc; Download | Favorite | View

Hardened-PHP Project Security Advisory 2007-03.142: Posted Feb 24, 2007; Authored by Stefan Esser, Hardened-PHP Project | Site hardened-php.net; Hardened PHP Project Security Advisory - Multiple browsers suffers from a cross domain charset inheritance vulnerability. Affected include Firefox versions 2.0.0.1 and below, Internet Explorer 7,and Opera 9.; tags | advisory, php; SHA-256 | dcd8c435391d3c078ac9563c091bc0f6313cafd8de503cb88d02e58310efcc93; Download | Favorite | View

Hardened-PHP Project Security Advisory 2007-02.141: Posted Jan 7, 2007; Authored by Stefan Esser, Hardened-PHP Project | Site hardened-php.net; Hardened PHP Project Security Advisory - WordPress versions 2.0.5 and below are susceptible to SQL injection and arbitrary PHP code execution vulnerabilities.; tags | advisory, arbitrary, php, vulnerability, code execution, sql injection; SHA-256 | 6ae242405ad8f267856415ba69fbe2d72b0564bc948f563c7faddf7468dc8a27; Download | Favorite | View

Hardened-PHP Project Security Advisory 2007-01.140: Posted Jan 7, 2007; Authored by Stefan Esser, Hardened-PHP Project | Site hardened-php.net; Hardened PHP Project Security Advisory - WordPress versions 2.0.5 and below are susceptible to a cross site scripting vulnerability.; tags | advisory, php, xss; SHA-256 | 2e3cbc0dfeeffe8d32e3e64641b81da4f32b8024d0bbc6b54762599b015b0f9a; Download | Favorite | View

Page 3 of 6 Back 1 2 3 4 5 Next

Top Authors In Last 30 Days

Red Hat 312 files
Ubuntu 65 files
Debian 25 files
LiquidWorm 11 files
Valentin Lobstein 10 files
nu11secur1ty 8 files
Milad Karimi 6 files
Google Security Research 5 files
Erdemstar 3 files
Jann Horn 3 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,025)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,477)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,700)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,478)
UNIX (9,394)
UnixWare (187)
Windows (6,653)
Other

Files from Stefan Esser

File Archive:

May 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems