Bugs

Here are a list of bugs I've discovered
Showing 12 items
TitleIDDisclosed dateInfo
TitleIDDisclosed dateInfo
Attachment direct obj ref | Totara LMS T-14175 March 18, 2015 Totara LMS < 2.7.1 
Double Free in PHP Standard Library Double Link-list | PHP| D CVE-2016-3132 March 7, 2016 Writeup + Exploit 
Heap BufferOver Flow in escapeshell functions | PHP CVE-2016-1904 January 4, 2016 Bug Report 
Memory Read via gdImageRotateInterpolated Array Index Out of Bounds | PHP CVE-2016-1903 November 26, 2015 Root Cause Analysis 
Use after free in sortWithSortKeys() | PHP CVE-2015-8616 December 3, 2015 Bug Report 
Null pointer dereference in phar_get_fp_offset() | PHP CVE-2015-7803 September 29, 2015 Bug Report 
Memory Corruption in phar_parse_tarfile | PHP CVE-2015-4021 May 18, 2015 Bug Report 
Buffer of flow when parsing tar/zip/phar | PHP CVE-2015-3329 April 14, 2015 Analysis + POC 
Heap Metadata corruption|PHP CVE-2015-3307 May 18, 2015 Bug Report 
Buffer Over-read in Phar | PHP CVE-2015-2783 March 29, 2015 Root Cause Analysis 
ZIP Integer Overflow (PHP | Libzip) CVE-2015-2331 March 18, 2015 Root Cause Analysis 
Axway SecureTransport Arbitrary File Upload CSRF  CVE-2013-7057 October 23, 2014 OSVDB 
Showing 12 items