* phpSecure.info - Welcome .. script, faille, hack, news, developpement, securité, open source php security related articles and vulnerabilities, vulnérabilités, by tobozo , frogman and calimero

Home

Home

Grey Skin Blue Skin Green Skin Red Skin

Home Articles Random Stuff PHP Advisories PHP Advisories

Backends RSS Team

PHPSecure II

When release the trilogy ?
Perfect remake
Boring ..
It isn't a good job

Last holes

WordPress Dreamsmiths Themes 0.0.1 Arbitrary File Download

2018-08-18

(67hits)

phpMeteo v1.6 sensitive information disclosure Vulnerability

2018-08-17

(47hits)

New PHP Code Execution Attack Puts WordPress Sites at Risk

2018-08-17

(64hits)

Pimcore 5.2.3 SQL Injection / Cross-Site Scripting / Cross-Site Request Forgery

2018-08-17

(79hits)

Active Matrimonial CMS v1.4 - Arbitrary File Upload

2018-08-15

(51hits)

New PHP Exploitation Technique Added

2018-08-14

(59hits)

PlayTube - The Ultimate PHP Video CMS & Video Sharing Platform 1.4.3 privilege escalation Vulnerability

2018-08-14

(43hits)

cPanel Filename Based Stored XSS < = v76

2018-08-14

(44hits)

OpenEMR < 5.0.1 Remote Code Execution

2018-08-07

(79hits)

PHP Template Store Script 3.0.6 Cross Site Scripting

2018-08-07

(76hits)

Vuln: PHP Multiple Heap Buffer Overflow Vulnerabilities

2018-08-06

(80hits)

Laravel 4.2 sensitive information disclosure Vulnerability

2018-08-06

(78hits)

CMS ISWEB 3.5.3 Directory Traversal

2018-08-06

(64hits)

Bugtraq: [SECURITY] [DSA 4262-1] symfony security update

2018-08-06

(66hits)

Auditor Website 2.0.1 Cross-Site Scripting

2018-08-04

(88hits)

Symfony Flaw Leaves Drupal Sites Vulnerable to Hackers—Patch Now

2018-08-03

(101hits)

uhotel booking 2.79. XML external entity injection Vulnerability

2018-08-03

(92hits)

DataLife Engine 13.0 Cross Site Scripting

2018-08-02

(102hits)

Drupal Access Control Flaw in Symfony HttpFoundation Component Lets Remote Users Bypass Security Restrictions on the Target System

2018-08-02

(96hits)

DataLife Engine Core Cross Site Scripting (XSS) & Execution Code

2018-08-01

(100hits)

Securing Credentials for PHP with Docker

2018-08-01

(83hits)

Keeping Credentials Secure in PHP

2018-08-01

(76hits)

Web Design itemDesc.php site sql injection

2018-07-30

(101hits)

Super Cms Blog Pro PHP Script v1.0 - XSS

2018-07-29

(101hits)

WordPress Plugin Responsive Thumbnail Slider Arbitrary File Upload (Metasploit)

2018-07-28

(91hits)

Symfony Remote Information Disclosure

2018-07-28

(92hits)

Super CMS Blog Pro PHP Script 1.0 SQL Injection / Shell Upload

2018-07-27

(109hits)

WordPress Gwolle Guestbook 2.5.3 Cross Site Scripting

2018-07-27

(89hits)

WordPress Strong Testimonials 2.31.4 Cross Site Scripting

2018-07-27

(111hits)

WordPress Snazzy Maps 1.1.3 Cross Site Scripting

2018-07-27

(176hits)

Bugtraq: DefenseCode ThunderScan SAST Advisory: WordPress Gwolle Guestbook Plugin XSS Security Vulnerability

2018-07-25

(83hits)

Bugtraq: DefenseCode ThunderScan SAST Advisory: WordPress Strong Testimonials Plugin Multiple XSS Security Vulnerabilities

2018-07-25

(78hits)

Bugtraq: DefenseCode ThunderScan SAST Advisory: WordPress Snazzy Maps Plugin Multiple XSS Security Vulnerabilities

2018-07-25

(88hits)

PHP Advisories/Bugs/Vulns frequency for this month


1	2	3	4	5	6	7	8	9	10	11	12	13	14	15	16	17	18	19	20	21	22	23	24	25	26	27	28	29	30	31

These PHP advisories are also available as a rss feed and on the dedicated twitter account @phpavdisories

Follow @phpAdvisories

Fast PHP CURL Multiple Requests (New)	2018-08-20
Zest	2018-08-20
Fast PHP CURL Multiple Requests	2018-08-20
CodeIgniter PHP WHMCS API (New)	2018-08-19
CodeIgniter PHP WHMCS API	2018-08-19
WordPress Dreamsmiths Themes 0.0.1 Arbitrary File Download	2018-08-18
Ultimate MySQL PDO Database Class (New)	2018-08-18
PHP 7.1.21 Released	2018-08-17
phpMeteo v1.6 sensitive information disclosure Vulnerability	2018-08-17
Array Map (New)	2018-08-17
PHP Form Database Processor	2018-08-17
Trello	2018-08-17
New PHP Code Execution Attack Puts WordPress Sites at Risk	2018-08-17
Pimcore 5.2.3 SQL Injection / Cross-Site Scripting / Cross-Site Request Forgery	2018-08-17
PHP 7.3.0.beta2 Released	2018-08-16
News browser

PHP Tutorial PHPBasics Installation Guide, Data Types, Variables, and Operators, Control structures, Functions, Strings, Regular expression, Error Handling, Cookies+Sessions, and many more..

SQLi The SQL Injection Knowledge Base is the ultimate resource regarding SQL Injections. Here you will find everything there is to know about SQL Injections.

phpseclib phpSec is a open-source, PSR-0 compatible, PHP security library that takes care of the common security tasks a web developer faces.

Class:sql_inject - This class is meant to search in your SQL data values for special characters that may change the meaning of your SQL data and execute actions that may compromise the security of servers.

Top 10 Links
÷ phpforge
÷ KillerProtection
÷ PY-Membres
÷ ALP - Banner Ad
÷ PhenHP Album
÷ CuteNews
÷ phpMyNewsletter
÷ LokwaBB
÷ Avotravis
÷ Kietu

French

English

Russian