CVE-2007-3294
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2007-3294
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple buffer overflows in libtidy, as used in the Tidy extension for PHP 5.2.3 and possibly other products, allow context-dependent attackers to execute arbitrary code via (1) a long second argument to the tidy_parse_string function or (2) an unspecified vector to the tidy_repair_string function. NOTE: this might only be an issue in environments where vsnprintf is implemented as a wrapper for vsprintf.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
PHP Tidy库远程缓冲区溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Tidy库用于改正HTML文档中的常见错误并生成格式编排良好的等价文档,还可以生成XHTML格式的文档。 Tidy库实现上存在缓冲区溢出漏洞,攻击者可能利用此漏洞通过诱使用户处理恶意文档执行恶意指令。 PHP所使用的Tidy库中没有正确验证对tidy_parse_string()和tidy_repair_string()函数的输入。如果用户向这些函数传送了超长参数的话,就可能触发缓冲区溢出,导致执行任意指令。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2007-3294
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2007-3294
请登录查看更多情报信息。
Same Patch Batch · n/a · 2007-06-20 · 19 CVEs total
| CVE-2007-3297 | Musoo PHP远程文件包含漏洞 | |
| CVE-2007-3304 | Apache HTTP Server Worker进程多个本地拒绝服务漏洞 | |
| CVE-2007-3303 | Apache Software Foundation Apache HTTP Server 代码注入漏洞 | |
| CVE-2007-3301 | FuseTalk AuthError.CFM SQL注入漏洞 | |
| CVE-2007-3300 | F-Secure多个杀毒产品LHA及RAR文档绕过安全扫描漏洞 | |
| CVE-2007-3299 | AWFFull 登录文件指示字段 跨站脚本攻击漏洞 | |
| CVE-2007-3298 | Spey SQL注入漏洞 | |
| CVE-2005-4847 | Spey 安全漏洞 | |
| CVE-2005-4846 | Spey 输入验证错误漏洞 | |
| CVE-2007-3285 | Mozilla Firefox URLBar空字节处理远程代码执行漏洞 | |
| CVE-2007-3296 | Web迅雷ThunderServer.webThunder.1 ActiveX控件任意文件下载漏洞 | |
| CVE-2007-3295 | YABB 目录遍历漏洞 | |
| CVE-2007-3293 | LiveCMS categoria.php SQL注入漏洞 | |
| CVE-2007-3292 | LiveCMS 未限制文件上传漏洞 | |
| CVE-2007-3291 | LiveCMS 跨站脚本攻击漏洞 | |
| CVE-2007-3290 | LiveCMS categoria.php远程攻击漏洞 | |
| CVE-2007-3289 | XOOPS WiwiMod spaw/spaw_control.class.php 远程文件包含漏洞 | |
| CVE-2007-3288 | WordPress Automattic Stats Module Referer Field HTML注入漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2007-3294
No comments yet