[PHP-BUG] Bug #65783 [NEW]: Layout.php refferal LDAP
From: mbiama at angosso dot com
Operating system: ALL
PHP version: 5.5.4
Package: Filter related
Bug Type: Bug
Bug description:Layout.php refferal LDAP
Description:
$_SERVER array containing information such as headers, paths, and script
locations
The ldap server use is UK.ZYRO SiteServer
Test script:
---
?php
register_globals
$_POST['api.hostinger.fr/redir/791491']
?php
function test() {
$GLOBALS['vars.php'] = p.pw/UL3;
}
test();
echo p$vars.php/p;
?
Expected result:
LDAP link identifier, returned by ldap_connect();
mixed $newval
function main()
?php include
dirname(__files__).'/uk.zyro/data/a/n/p.pw/UL3/out/vars.php/*'; ?
(!ldap_set_option($ds, LDAP_OPT_SERVER_CONTROLS, array($'_sortfunction',
$'_sortfunction2'))) {
$array = [
vars.php/ = layout.php,
layout.php = vars.php/,
];
echo Failed to set server controls;
Actual result:
--
PHP appears to ignore the referral and ldap_error returns a referral
message
--
Edit bug report at https://bugs.php.net/bug.php?id=65783edit=1
--
Try a snapshot (PHP 5.4):
https://bugs.php.net/fix.php?id=65783r=trysnapshot54
Try a snapshot (PHP 5.3):
https://bugs.php.net/fix.php?id=65783r=trysnapshot53
Try a snapshot (trunk):
https://bugs.php.net/fix.php?id=65783r=trysnapshottrunk
Fixed in SVN: https://bugs.php.net/fix.php?id=65783r=fixed
Fixed in release: https://bugs.php.net/fix.php?id=65783r=alreadyfixed
Need backtrace: https://bugs.php.net/fix.php?id=65783r=needtrace
Need Reproduce Script: https://bugs.php.net/fix.php?id=65783r=needscript
Try newer version: https://bugs.php.net/fix.php?id=65783r=oldversion
Not developer issue:https://bugs.php.net/fix.php?id=65783r=support
Expected behavior: https://bugs.php.net/fix.php?id=65783r=notwrong
Not enough info:
https://bugs.php.net/fix.php?id=65783r=notenoughinfo
Submitted twice:
https://bugs.php.net/fix.php?id=65783r=submittedtwice
register_globals: https://bugs.php.net/fix.php?id=65783r=globals
PHP 4 support discontinued: https://bugs.php.net/fix.php?id=65783r=php4
Daylight Savings: https://bugs.php.net/fix.php?id=65783r=dst
IIS Stability: https://bugs.php.net/fix.php?id=65783r=isapi
Install GNU Sed:https://bugs.php.net/fix.php?id=65783r=gnused
Floating point limitations: https://bugs.php.net/fix.php?id=65783r=float
No Zend Extensions: https://bugs.php.net/fix.php?id=65783r=nozend
MySQL Configuration Error: https://bugs.php.net/fix.php?id=65783r=mysqlcfg
[PHP-BUG] Bug #65688 [NEW]: dir-containing-phpinifile
From: mbiama at angosso dot com
Operating system: GNU/LINUX-Apache2
PHP version: 5.4.19
Package: Built-in web server
Bug Type: Bug
Bug description:dir-containing-phpinifile
Description:
New report a bug mixed curl_exec ( resource $ch ).
Test script:
---
?php
// Création a news cURL
[Php.ini run as Apache Module ]
$ch = curl_init();
?php
include
dirname(__files__).'/uk.zyro.com/data/a/n/[dotted].com/out/vars.php/*';
?
// Configure URL and all options
curl_setopt($ch, CURLOPT_URL, http://localhost:48173/vars.php/site/;);
curl_setopt($ch, CURLOPT_HEADER, 1);
//
curl_exec($ch);
// Close cURL
curl_close($ch);
?
Expected result:
?php
// Création d'une nouvelle ressource cURL
[Php.ini run as Apache Module ]
$ch = curl_init();
?php
include
dirname(__files__).'/uk.zyro.com/data/a/n/[dotted].com/out/vars.php/*';
?
// Configure URL and all options
curl_setopt($ch, CURLOPT_URL, http://localhost:48173/vars.php/site/;);
curl_setopt($ch, CURLOPT_HEADER, 1);
//
curl_exec($ch);
function curl_post($url, array $post = NULL, array $options = array())
{
$defaults = array(
CURLOPT_POST = 1,
CURLOPT_HEADER = 0,
CURLOPT_URL = $url,
CURLOPT_FRESH_CONNECT = 1,
CURLOPT_RETURNTRANSFER = 1,
CURLOPT_FORBID_REUSE = 1,
CURLOPT_TIMEOUT = 4,
CURLOPT_POSTFIELDS = http_build_query($post)
);
$ch = curl_init();
curl_setopt_array($ch, ($options +
$http://www.[dotted].com:80/vars.php/site/));
if( ! $result = curl_exec($ch))
{
trigger_error(curl_error($ch));
}
curl_close($ch);
return $result;
}
// Close cURL
curl_close($ch);
?
Actual result:
--
backtrace
--
Edit bug report at https://bugs.php.net/bug.php?id=65688edit=1
--
Try a snapshot (PHP 5.4):
https://bugs.php.net/fix.php?id=65688r=trysnapshot54
Try a snapshot (PHP 5.3):
https://bugs.php.net/fix.php?id=65688r=trysnapshot53
Try a snapshot (trunk):
https://bugs.php.net/fix.php?id=65688r=trysnapshottrunk
Fixed in SVN: https://bugs.php.net/fix.php?id=65688r=fixed
Fixed in release: https://bugs.php.net/fix.php?id=65688r=alreadyfixed
Need backtrace: https://bugs.php.net/fix.php?id=65688r=needtrace
Need Reproduce Script: https://bugs.php.net/fix.php?id=65688r=needscript
Try newer version: https://bugs.php.net/fix.php?id=65688r=oldversion
Not developer issue:https://bugs.php.net/fix.php?id=65688r=support
Expected behavior: https://bugs.php.net/fix.php?id=65688r=notwrong
Not enough info:
https://bugs.php.net/fix.php?id=65688r=notenoughinfo
Submitted twice:
https://bugs.php.net/fix.php?id=65688r=submittedtwice
register_globals: https://bugs.php.net/fix.php?id=65688r=globals
PHP 4 support discontinued: https://bugs.php.net/fix.php?id=65688r=php4
Daylight Savings: https://bugs.php.net/fix.php?id=65688r=dst
IIS Stability: https://bugs.php.net/fix.php?id=65688r=isapi
Install GNU Sed:https://bugs.php.net/fix.php?id=65688r=gnused
Floating point limitations: https://bugs.php.net/fix.php?id=65688r=float
No Zend Extensions: https://bugs.php.net/fix.php?id=65688r=nozend
MySQL Configuration Error: https://bugs.php.net/fix.php?id=65688r=mysqlcfg
[PHP-BUG] Bug #65675 [NEW]: BingSiteAuth.xml
From: mbiama at angosso dot com Operating system: webmaster bing PHP version: master-Git-2013-09-15 (snap) Package: Output Control Bug Type: Bug Bug description:BingSiteAuth.xml Description: Short script that reproduces the problem Test script: --- meta name=msvalidate.01 content=828E463BCD9081D94FAFA3E20CFE019F / html head meta name=msvalidate.01 content=828E463BCD9081D94FAFA3E20CFE019F / titleLes Diasporas Plurielles::[Dotted] - The Plural Diasporas here and in The World/title /head body p ?php include string(__CNAME__).'/541b04f323a031051553264d35181e65/verify.bing.com'; curl:'http://www.[dotted].com/BingSiteAuth.xml; ? /p /body /html Expected result: meta name=msvalidate.01 content=828E463BCD9081D94FAFA3E20CFE019F / html head meta name=msvalidate.01 content=828E463BCD9081D94FAFA3E20CFE019F / titleLes Diasporas Plurielles::[Dotted] - The Plural Diasporas here and in The World/title /head body ?php include string(__CNAME__).'/541b04f323a031051553264d35181e65/verify.bing.com'; curl:'http://www.[dotted].com/BingSiteAuth.xml; ? /body /html -- Edit bug report at https://bugs.php.net/bug.php?id=65675edit=1 -- Try a snapshot (PHP 5.4): https://bugs.php.net/fix.php?id=65675r=trysnapshot54 Try a snapshot (PHP 5.3): https://bugs.php.net/fix.php?id=65675r=trysnapshot53 Try a snapshot (trunk): https://bugs.php.net/fix.php?id=65675r=trysnapshottrunk Fixed in SVN: https://bugs.php.net/fix.php?id=65675r=fixed Fixed in release: https://bugs.php.net/fix.php?id=65675r=alreadyfixed Need backtrace: https://bugs.php.net/fix.php?id=65675r=needtrace Need Reproduce Script: https://bugs.php.net/fix.php?id=65675r=needscript Try newer version: https://bugs.php.net/fix.php?id=65675r=oldversion Not developer issue:https://bugs.php.net/fix.php?id=65675r=support Expected behavior: https://bugs.php.net/fix.php?id=65675r=notwrong Not enough info: https://bugs.php.net/fix.php?id=65675r=notenoughinfo Submitted twice: https://bugs.php.net/fix.php?id=65675r=submittedtwice register_globals: https://bugs.php.net/fix.php?id=65675r=globals PHP 4 support discontinued: https://bugs.php.net/fix.php?id=65675r=php4 Daylight Savings: https://bugs.php.net/fix.php?id=65675r=dst IIS Stability: https://bugs.php.net/fix.php?id=65675r=isapi Install GNU Sed:https://bugs.php.net/fix.php?id=65675r=gnused Floating point limitations: https://bugs.php.net/fix.php?id=65675r=float No Zend Extensions: https://bugs.php.net/fix.php?id=65675r=nozend MySQL Configuration Error: https://bugs.php.net/fix.php?id=65675r=mysqlcfg
[PHP-BUG] Req #65668 [NEW]: WB_CHECK_POSSIBLE_ROOT(wb)
From: mbiama at angosso dot com
Operating system: posix_setpgid
PHP version: 5.5.3
Package: Built-in web server
Bug Type: Feature/Change Request
Bug description:WB_CHECK_POSSIBLE_ROOT(wb)
Description:
Assess the situation and use Security as bug type in the form below:
Head site générator.
script type=text/javascript
function keepAlive() { var myAjax = new Request({method: get, urls:
index.php;./index2.php;./index3.php/}).send();}
window.addEvent(domready,
function(){ keepAlive.periodical(EvPeriodic::__construct); });
/script
Test script:
---
style type=text/css
body { background: #656e15 none repeat-x scroll center top; }
.wb_sbg { background: transparent
url(gallery/299522281f72bdd23dad7b5afbeaee4d.jpg) repeat-x scroll left
top; }
.wb-stl-pagetitle { font: normal normal 22px Trebuchet
MS,sans-serif;
text-align: left; text-decoration: none; color: #858585; line-height: 23px;
margin: 0px 0px 0px 0px; padding: 0px 0px 0px 0px; }
.wb-stl-pagetitle a { font: normal normal 22px Trebuchet
MS,sans-serif;
text-align: left; text-decoration: none; color: #00; line-height: 23px;
font-weight: normal; font-style: normal; }
.wb-stl-pagetitle a:hover { font: normal normal 22px Trebuchet
MS,sans-serif; text-align: left; text-decoration: none; color: #00;
line-height: 23px; font-weight: normal; font-style: normal; }
.wb-stl-pagetitle ul { list-style-image: url('null'); }
.wb-stl-subtitle { font: normal bold 50px Trebuchet
MS,sans-serif;
text-align: left; text-decoration: none; color: #ff8533; line-height: 50px;
margin: 0px 0px 0px 0px; padding: 0px 0px 0px 0px; }
.wb-stl-subtitle a { font: normal bold 50px Trebuchet
MS,sans-serif;
text-align: left; text-decoration: none; color: #00; line-height: 50px;
font-weight: normal; font-style: normal; }
.wb-stl-subtitle a:hover { font: normal bold 50px Trebuchet
MS,sans-serif; text-align: left; text-decoration: none; color: #00;
line-height: 50px; font-weight: normal; font-style: normal; }
.wb-stl-subtitle ul { list-style-image: url('null'); }
.wb-stl-heading1 { font: normal normal 24px Trebuchet
MS,sans-serif;
text-align: left; text-decoration: none; color: #ff8533; line-height: 24px;
margin: 0px 0px 0px 0px; padding: 0px 0px 0px 0px; }
.wb-stl-heading1 a { font: normal normal 24px Trebuchet
MS,sans-serif;
text-align: left; text-decoration: none; color: #00; line-height: 24px;
font-weight: normal; font-style: normal; }
.wb-stl-heading1 a:hover { font: normal normal 24px Trebuchet
MS,sans-serif; text-align: left; text-decoration: none; color: #00;
line-height: 24px; font-weight: normal; font-style: normal; }
.wb-stl-heading1 ul { list-style-image: url('null'); }
.wb-stl-heading2 { font: normal normal 20px Trebuchet
MS,sans-serif;
text-align: left; text-decoration: none; color: #ff8533; line-height:
normal; margin: 0px 0px 0px 0px; padding: 0px 0px 0px 0px; }
.wb-stl-heading2 a { font: normal normal 20px Trebuchet
MS,sans-serif;
text-align: left; text-decoration: none; color: #00; line-height:
normal; font-weight: normal; font-style: normal; }
.wb-stl-heading2 a:hover { font: normal normal 20px Trebuchet
MS,sans-serif; text-align: left; text-decoration: none; color: #00;
line-height: normal; font-weight: normal; font-style: normal; }
.wb-stl-heading2 ul { list-style-image: url('null'); }
.wb-stl-heading3 { font: normal normal 18px Trebuchet
MS,sans-serif;
text-align: left; text-decoration: none; color: #ff; line-height:
normal; margin: 0px 0px 0px 0px; padding: 0px 0px 0px 0px; }
.wb-stl-heading3 a { font: normal normal 18px Trebuchet
MS,sans-serif;
text-align: left; text-decoration: none; color: #00; line-height:
normal; font-weight: normal; font-style: normal; }
.wb-stl-heading3 a:hover { font: normal normal 18px Trebuchet
MS,sans-serif; text-align: left; text-decoration: none; color: #00;
line-height: normal; font-weight: normal; font-style: normal; }
.wb-stl-heading3 ul { list-style-image: url('null'); }
.wb-stl-normal { font: normal normal 13px Trebuchet
MS,sans-serif;
text-align: left; text-decoration: none; color: #8c8c8c; line-height: 19px;
margin: 0px 0px 0px 0px; padding: 0px 0px 0px 0px; }
.wb-stl-normal a { font: normal normal 13px Trebuchet
MS,sans-serif;
text-align: left; text-decoration: underline; color: #00; line-height:
19px; font-weight: bold; font-style: normal; }
.wb-stl-normal a:hover { font: normal normal 13px Trebuchet
MS,sans-serif; text-align: left; text-decoration: none; color: #00;
line-height: 19px; font-weight: bold; font-style
[PHP-BUG] Bug #65662 [NEW]: root files cpanel
From: mbiama at angosso dot com
Operating system: Ubuntu/linux/Apache/php
PHP version: 5.5.3
Package: Apache2 related
Bug Type: Bug
Bug description:root files cpanel
Description:
?php
include 'http://www.exemple.com/file.php/.?root=1bar=2';
$root = 1;
$bar = 2;
$(function() {
$root = include 'return.php';
echo $root; // prints 'PHP'
$bar = include 'noreturn.php';
echo $bar; // prints 1
$string = get_include_contents('somefile.php');
?
Expected result:
?php
include 'http://www.nav.com/file.php/./?root=1bar=2';
$root = 1;
$bar = 2;
$(function() {
$(#wb_element_instance599).children(ul).children().each(function() {
if
($(this).children(ul).size() == 0) return;
$(this).hover(function() {
$(this).children(ul).css({display: block});
}, function() {
$(this).children(ul).css({display: none});
});
});
});
include 'file.txt'; // id=wb_element_instance601 class=wb_element;
include 'file.php'; // ul class=hmenu;
?php include dirname(__FILES__).'/uk.zyro/li class='active'a
href='HOME/'
target='_self' title='HOME'HOME/a/li'; ?
?php include dirname(__FILES__).'/uk.zyro/li class='active'a
href='ROOMS/'
target='_self' title='ROOMS'ROOMS/a/li';
?php include dirname(__FILES__).'/uk.zyro/li class='active'a
href='RESERVATIONS/' target='_self'
title='RESERVATIONS'RESERVATIONS/a/li';
?
?php include dirname(__FILES__).'/uk.zyro/li class='active'a
href='CONTACTS/' target='_self' title='CONTACTS'CONTACTS/a/li'; ?
?php include dirname(__FILES__).'/uk.zyro/li class='active'a
href='SITEMAP/'
target='_self' title='SITEMAP'SITEMAP/a/li'; ?
?php include dirname(__FILES__).'/uk.zyro/li class='active'a
href='AFFILIATE/' target='_self' title='AFFILIATE'AFFILIATE/a/li'; ?
?php include dirname(__FILES__).'/uk.zyro/li class='active'a
href='MEDIAS/'
target='_self' title='MEDIAS'MEDIAS/a/li'; ?
if ((include 'vars.php') == 'OK') {
echo 'OK';
}
$root = include 'return.php';
echo $root; // prints 'PHP'
$bar = include 'noreturn.php';
echo $bar; // prints 1
$string = get_include_contents('somefile.php');
function get_include_contents($filename) {
if (is_file($filename)) {
ob_start();
include $filename;
return ob_get_clean();
}
return false;
}
?
--
Edit bug report at https://bugs.php.net/bug.php?id=65662edit=1
--
Try a snapshot (PHP 5.4):
https://bugs.php.net/fix.php?id=65662r=trysnapshot54
Try a snapshot (PHP 5.3):
https://bugs.php.net/fix.php?id=65662r=trysnapshot53
Try a snapshot (trunk):
https://bugs.php.net/fix.php?id=65662r=trysnapshottrunk
Fixed in SVN: https://bugs.php.net/fix.php?id=65662r=fixed
Fixed in release: https://bugs.php.net/fix.php?id=65662r=alreadyfixed
Need backtrace: https://bugs.php.net/fix.php?id=65662r=needtrace
Need Reproduce Script: https://bugs.php.net/fix.php?id=65662r=needscript
Try newer version: https://bugs.php.net/fix.php?id=65662r=oldversion
Not developer issue:https://bugs.php.net/fix.php?id=65662r=support
Expected behavior: https://bugs.php.net/fix.php?id=65662r=notwrong
Not enough info:
https://bugs.php.net/fix.php?id=65662r=notenoughinfo
Submitted twice:
https://bugs.php.net/fix.php?id=65662r=submittedtwice
register_globals: https://bugs.php.net/fix.php?id=65662r=globals
PHP 4 support discontinued: https://bugs.php.net/fix.php?id=65662r=php4
Daylight Savings: https://bugs.php.net/fix.php?id=65662r=dst
IIS Stability: https://bugs.php.net/fix.php?id=65662r=isapi
Install GNU Sed:https://bugs.php.net/fix.php?id=65662r=gnused
Floating point limitations: https://bugs.php.net/fix.php?id=65662r=float
No Zend Extensions: https://bugs.php.net/fix.php?id=65662r=nozend
MySQL Configuration Error: https://bugs.php.net/fix.php?id=65662r=mysqlcfg
[PHP-BUG] Bug #53987 [NEW]: Angosso.com
From: Operating system: apache/php PHP version: 5.3.5 Package: Dynamic loading Bug Type: Bug Bug description:Angosso.com Description: Warning: main(/home/sites//angosso.com/index3.php/angosso.html/ Debugging with Php 5 php.ini Output Control : Bug #50044: angosso@php.net Test script: --- xs:schema xmlns:xs=http://www.w3.org/2001/XMLSchema;; xmlns:nw=http://angosso.com/nameworld;; targetNamespace=http://angosso.com/index3.php/angosso.html/;; elementFormDefault=Les Diasporas Plurielles::angosso.com - The Plural Diasporas here and in The world targetNameWeb=http://www.angosso.com/ ... Expected result: Using: Apache/2.2.3 (Ubuntu) PHP/5.3 can't change the include_path in php.ini. it always defaults to: .:/usr/share/php:/usr/share/pear. using the correct php.ini and correct Configur ... Bug #49768: www.angosso.com/index3.php/angosso.html Description: The Problem is the Bug the Extension siteweb: www.angosso.com/action or http://angosso.com/index3.php/angosso.html= Reproduce code: --- http://angosso.com/index3.php/angosso.html ... Thank you for this bug report. To properly diagnose the problem, we need a short but complete example script to be able to reproduce this bug ourselves. A proper reproducing script starts with ?php and ends with ?, is max. 10-20 lines long and does not require any external resources such as databases, etc. If the script requires a database to demonstrate the issue, please make sure it creates all necessary tables, stored procedures etc. Please avoid embedding huge scripts into the report. Actual result: -- /home/sites/angosso.com/public_html -- Edit bug report at http://bugs.php.net/bug.php?id=53987edit=1 -- Try a snapshot (PHP 5.2): http://bugs.php.net/fix.php?id=53987r=trysnapshot52 Try a snapshot (PHP 5.3): http://bugs.php.net/fix.php?id=53987r=trysnapshot53 Try a snapshot (trunk): http://bugs.php.net/fix.php?id=53987r=trysnapshottrunk Fixed in SVN: http://bugs.php.net/fix.php?id=53987r=fixed Fixed in SVN and need be documented: http://bugs.php.net/fix.php?id=53987r=needdocs Fixed in release: http://bugs.php.net/fix.php?id=53987r=alreadyfixed Need backtrace: http://bugs.php.net/fix.php?id=53987r=needtrace Need Reproduce Script: http://bugs.php.net/fix.php?id=53987r=needscript Try newer version: http://bugs.php.net/fix.php?id=53987r=oldversion Not developer issue: http://bugs.php.net/fix.php?id=53987r=support Expected behavior: http://bugs.php.net/fix.php?id=53987r=notwrong Not enough info: http://bugs.php.net/fix.php?id=53987r=notenoughinfo Submitted twice: http://bugs.php.net/fix.php?id=53987r=submittedtwice register_globals: http://bugs.php.net/fix.php?id=53987r=globals PHP 4 support discontinued: http://bugs.php.net/fix.php?id=53987r=php4 Daylight Savings:http://bugs.php.net/fix.php?id=53987r=dst IIS Stability: http://bugs.php.net/fix.php?id=53987r=isapi Install GNU Sed: http://bugs.php.net/fix.php?id=53987r=gnused Floating point limitations: http://bugs.php.net/fix.php?id=53987r=float No Zend Extensions: http://bugs.php.net/fix.php?id=53987r=nozend MySQL Configuration Error: http://bugs.php.net/fix.php?id=53987r=mysqlcfg
