The Issue
The OpenPSA project used xml_parse_into_struct in an overly permissive manner, via file upload. This can cause a denial of service scenario for certain PHP versions.
The Issue
A Local File Disclosure (LFD) vulnerability allows an attacker to disclose the contents of files on the target system, provided the victim user has read permissions to the specified file.
0dd identified that the LMS project contained a Local File Disclosure vulnerability, which could be triggered by an unauthenticated user, via a GET variable ($_GET['db'])
The Issue
An XML External Entity attack is a type of attack against an application that parses XML input. This attack occurs when XML input containing a reference to an external entity is processed by a weakly configured XML parser. This attack may lead to the disclosure of confidential data, denial of service, server side request forgery, port scanning from the perspective of the machine where the parser is located, and other system impacts.
TripleA contains the functionality to export game data and import it on another game server. This game data is in XML format. 0dd identified that the parser used within the TripleA program to parse XML was not securely implemented.
The Issue
PHP Object Deserialization Injection attacks utilise the unserialize function within PHP. The deserialisation of the PHP object can trigger certain methods within the object, allowing the attacker to perform unauthorised actions like execution of code, disclosure of information, etc.
The OpenPSA project overly trusted user input when processing the data obtained from a form.
The Issue
PHP Object Deserialization Injection attacks utilise the unserialize function within PHP. The deserialisation of the PHP object can trigger certain methods within the object, allowing the attacker to perform unauthorised actions like execution of code, disclosure of information, etc.
The Froxlor project overly trusted user input (administrative users), feeding this input directly into the unserialize function of PHP.