RSS   Vulnerabilities for 'Sandbox'   RSS

2008-12-19
 
CVE-2008-5694

CWE-noinfo
 

 
PHP remote file inclusion vulnerability in lib/jpgraph/jpgraph_errhandler.inc.php in Sandbox 1.4.1 might allow remote attackers to execute arbitrary PHP code via unspecified vectors. NOTE: the issue, if any, may be located in Aditus JpGraph rather than Sandbox. If so, then this should not be treated as an issue in Sandbox.

 
2005-08-03
 
CVE-2005-2449

 

 
Race condition in sandbox before 1.2.11 allows local users to create or overwrite arbitrary files via symlink attack on sandboxpids.tmp.

 


Copyright 2024, cxsecurity.com

 

Back to Top