[PHP-BUG] Bug #65783 [NEW]: Layout.php refferal LDAP
From: mbiama at angosso dot com Operating system: ALL PHP version: 5.5.4 Package: Filter related Bug Type: Bug Bug description:Layout.php refferal LDAP Description: $_SERVER array containing information such as headers, paths, and script locations The ldap server use is UK.ZYRO SiteServer Test script: --- ?php register_globals $_POST['api.hostinger.fr/redir/791491'] ?php function test() { $GLOBALS['vars.php'] = p.pw/UL3; } test(); echo p$vars.php/p; ? Expected result: LDAP link identifier, returned by ldap_connect(); mixed $newval function main() ?php include dirname(__files__).'/uk.zyro/data/a/n/p.pw/UL3/out/vars.php/*'; ? (!ldap_set_option($ds, LDAP_OPT_SERVER_CONTROLS, array($'_sortfunction', $'_sortfunction2'))) { $array = [ vars.php/ = layout.php, layout.php = vars.php/, ]; echo Failed to set server controls; Actual result: -- PHP appears to ignore the referral and ldap_error returns a referral message -- Edit bug report at https://bugs.php.net/bug.php?id=65783edit=1 -- Try a snapshot (PHP 5.4): https://bugs.php.net/fix.php?id=65783r=trysnapshot54 Try a snapshot (PHP 5.3): https://bugs.php.net/fix.php?id=65783r=trysnapshot53 Try a snapshot (trunk): https://bugs.php.net/fix.php?id=65783r=trysnapshottrunk Fixed in SVN: https://bugs.php.net/fix.php?id=65783r=fixed Fixed in release: https://bugs.php.net/fix.php?id=65783r=alreadyfixed Need backtrace: https://bugs.php.net/fix.php?id=65783r=needtrace Need Reproduce Script: https://bugs.php.net/fix.php?id=65783r=needscript Try newer version: https://bugs.php.net/fix.php?id=65783r=oldversion Not developer issue:https://bugs.php.net/fix.php?id=65783r=support Expected behavior: https://bugs.php.net/fix.php?id=65783r=notwrong Not enough info: https://bugs.php.net/fix.php?id=65783r=notenoughinfo Submitted twice: https://bugs.php.net/fix.php?id=65783r=submittedtwice register_globals: https://bugs.php.net/fix.php?id=65783r=globals PHP 4 support discontinued: https://bugs.php.net/fix.php?id=65783r=php4 Daylight Savings: https://bugs.php.net/fix.php?id=65783r=dst IIS Stability: https://bugs.php.net/fix.php?id=65783r=isapi Install GNU Sed:https://bugs.php.net/fix.php?id=65783r=gnused Floating point limitations: https://bugs.php.net/fix.php?id=65783r=float No Zend Extensions: https://bugs.php.net/fix.php?id=65783r=nozend MySQL Configuration Error: https://bugs.php.net/fix.php?id=65783r=mysqlcfg
[PHP-BUG] Bug #65688 [NEW]: dir-containing-phpinifile
From: mbiama at angosso dot com Operating system: GNU/LINUX-Apache2 PHP version: 5.4.19 Package: Built-in web server Bug Type: Bug Bug description:dir-containing-phpinifile Description: New report a bug mixed curl_exec ( resource $ch ). Test script: --- ?php // Création a news cURL [Php.ini run as Apache Module ] $ch = curl_init(); ?php include dirname(__files__).'/uk.zyro.com/data/a/n/[dotted].com/out/vars.php/*'; ? // Configure URL and all options curl_setopt($ch, CURLOPT_URL, http://localhost:48173/vars.php/site/;); curl_setopt($ch, CURLOPT_HEADER, 1); // curl_exec($ch); // Close cURL curl_close($ch); ? Expected result: ?php // Création d'une nouvelle ressource cURL [Php.ini run as Apache Module ] $ch = curl_init(); ?php include dirname(__files__).'/uk.zyro.com/data/a/n/[dotted].com/out/vars.php/*'; ? // Configure URL and all options curl_setopt($ch, CURLOPT_URL, http://localhost:48173/vars.php/site/;); curl_setopt($ch, CURLOPT_HEADER, 1); // curl_exec($ch); function curl_post($url, array $post = NULL, array $options = array()) { $defaults = array( CURLOPT_POST = 1, CURLOPT_HEADER = 0, CURLOPT_URL = $url, CURLOPT_FRESH_CONNECT = 1, CURLOPT_RETURNTRANSFER = 1, CURLOPT_FORBID_REUSE = 1, CURLOPT_TIMEOUT = 4, CURLOPT_POSTFIELDS = http_build_query($post) ); $ch = curl_init(); curl_setopt_array($ch, ($options + $http://www.[dotted].com:80/vars.php/site/)); if( ! $result = curl_exec($ch)) { trigger_error(curl_error($ch)); } curl_close($ch); return $result; } // Close cURL curl_close($ch); ? Actual result: -- backtrace -- Edit bug report at https://bugs.php.net/bug.php?id=65688edit=1 -- Try a snapshot (PHP 5.4): https://bugs.php.net/fix.php?id=65688r=trysnapshot54 Try a snapshot (PHP 5.3): https://bugs.php.net/fix.php?id=65688r=trysnapshot53 Try a snapshot (trunk): https://bugs.php.net/fix.php?id=65688r=trysnapshottrunk Fixed in SVN: https://bugs.php.net/fix.php?id=65688r=fixed Fixed in release: https://bugs.php.net/fix.php?id=65688r=alreadyfixed Need backtrace: https://bugs.php.net/fix.php?id=65688r=needtrace Need Reproduce Script: https://bugs.php.net/fix.php?id=65688r=needscript Try newer version: https://bugs.php.net/fix.php?id=65688r=oldversion Not developer issue:https://bugs.php.net/fix.php?id=65688r=support Expected behavior: https://bugs.php.net/fix.php?id=65688r=notwrong Not enough info: https://bugs.php.net/fix.php?id=65688r=notenoughinfo Submitted twice: https://bugs.php.net/fix.php?id=65688r=submittedtwice register_globals: https://bugs.php.net/fix.php?id=65688r=globals PHP 4 support discontinued: https://bugs.php.net/fix.php?id=65688r=php4 Daylight Savings: https://bugs.php.net/fix.php?id=65688r=dst IIS Stability: https://bugs.php.net/fix.php?id=65688r=isapi Install GNU Sed:https://bugs.php.net/fix.php?id=65688r=gnused Floating point limitations: https://bugs.php.net/fix.php?id=65688r=float No Zend Extensions: https://bugs.php.net/fix.php?id=65688r=nozend MySQL Configuration Error: https://bugs.php.net/fix.php?id=65688r=mysqlcfg
[PHP-BUG] Bug #65675 [NEW]: BingSiteAuth.xml
From: mbiama at angosso dot com Operating system: webmaster bing PHP version: master-Git-2013-09-15 (snap) Package: Output Control Bug Type: Bug Bug description:BingSiteAuth.xml Description: Short script that reproduces the problem Test script: --- meta name=msvalidate.01 content=828E463BCD9081D94FAFA3E20CFE019F / html head meta name=msvalidate.01 content=828E463BCD9081D94FAFA3E20CFE019F / titleLes Diasporas Plurielles::[Dotted] - The Plural Diasporas here and in The World/title /head body p ?php include string(__CNAME__).'/541b04f323a031051553264d35181e65/verify.bing.com'; curl:'http://www.[dotted].com/BingSiteAuth.xml; ? /p /body /html Expected result: meta name=msvalidate.01 content=828E463BCD9081D94FAFA3E20CFE019F / html head meta name=msvalidate.01 content=828E463BCD9081D94FAFA3E20CFE019F / titleLes Diasporas Plurielles::[Dotted] - The Plural Diasporas here and in The World/title /head body ?php include string(__CNAME__).'/541b04f323a031051553264d35181e65/verify.bing.com'; curl:'http://www.[dotted].com/BingSiteAuth.xml; ? /body /html -- Edit bug report at https://bugs.php.net/bug.php?id=65675edit=1 -- Try a snapshot (PHP 5.4): https://bugs.php.net/fix.php?id=65675r=trysnapshot54 Try a snapshot (PHP 5.3): https://bugs.php.net/fix.php?id=65675r=trysnapshot53 Try a snapshot (trunk): https://bugs.php.net/fix.php?id=65675r=trysnapshottrunk Fixed in SVN: https://bugs.php.net/fix.php?id=65675r=fixed Fixed in release: https://bugs.php.net/fix.php?id=65675r=alreadyfixed Need backtrace: https://bugs.php.net/fix.php?id=65675r=needtrace Need Reproduce Script: https://bugs.php.net/fix.php?id=65675r=needscript Try newer version: https://bugs.php.net/fix.php?id=65675r=oldversion Not developer issue:https://bugs.php.net/fix.php?id=65675r=support Expected behavior: https://bugs.php.net/fix.php?id=65675r=notwrong Not enough info: https://bugs.php.net/fix.php?id=65675r=notenoughinfo Submitted twice: https://bugs.php.net/fix.php?id=65675r=submittedtwice register_globals: https://bugs.php.net/fix.php?id=65675r=globals PHP 4 support discontinued: https://bugs.php.net/fix.php?id=65675r=php4 Daylight Savings: https://bugs.php.net/fix.php?id=65675r=dst IIS Stability: https://bugs.php.net/fix.php?id=65675r=isapi Install GNU Sed:https://bugs.php.net/fix.php?id=65675r=gnused Floating point limitations: https://bugs.php.net/fix.php?id=65675r=float No Zend Extensions: https://bugs.php.net/fix.php?id=65675r=nozend MySQL Configuration Error: https://bugs.php.net/fix.php?id=65675r=mysqlcfg
[PHP-BUG] Req #65668 [NEW]: WB_CHECK_POSSIBLE_ROOT(wb)
From: mbiama at angosso dot com Operating system: posix_setpgid PHP version: 5.5.3 Package: Built-in web server Bug Type: Feature/Change Request Bug description:WB_CHECK_POSSIBLE_ROOT(wb) Description: Assess the situation and use Security as bug type in the form below: Head site générator. script type=text/javascript function keepAlive() { var myAjax = new Request({method: get, urls: index.php;./index2.php;./index3.php/}).send();} window.addEvent(domready, function(){ keepAlive.periodical(EvPeriodic::__construct); }); /script Test script: --- style type=text/css body { background: #656e15 none repeat-x scroll center top; } .wb_sbg { background: transparent url(gallery/299522281f72bdd23dad7b5afbeaee4d.jpg) repeat-x scroll left top; } .wb-stl-pagetitle { font: normal normal 22px Trebuchet MS,sans-serif; text-align: left; text-decoration: none; color: #858585; line-height: 23px; margin: 0px 0px 0px 0px; padding: 0px 0px 0px 0px; } .wb-stl-pagetitle a { font: normal normal 22px Trebuchet MS,sans-serif; text-align: left; text-decoration: none; color: #00; line-height: 23px; font-weight: normal; font-style: normal; } .wb-stl-pagetitle a:hover { font: normal normal 22px Trebuchet MS,sans-serif; text-align: left; text-decoration: none; color: #00; line-height: 23px; font-weight: normal; font-style: normal; } .wb-stl-pagetitle ul { list-style-image: url('null'); } .wb-stl-subtitle { font: normal bold 50px Trebuchet MS,sans-serif; text-align: left; text-decoration: none; color: #ff8533; line-height: 50px; margin: 0px 0px 0px 0px; padding: 0px 0px 0px 0px; } .wb-stl-subtitle a { font: normal bold 50px Trebuchet MS,sans-serif; text-align: left; text-decoration: none; color: #00; line-height: 50px; font-weight: normal; font-style: normal; } .wb-stl-subtitle a:hover { font: normal bold 50px Trebuchet MS,sans-serif; text-align: left; text-decoration: none; color: #00; line-height: 50px; font-weight: normal; font-style: normal; } .wb-stl-subtitle ul { list-style-image: url('null'); } .wb-stl-heading1 { font: normal normal 24px Trebuchet MS,sans-serif; text-align: left; text-decoration: none; color: #ff8533; line-height: 24px; margin: 0px 0px 0px 0px; padding: 0px 0px 0px 0px; } .wb-stl-heading1 a { font: normal normal 24px Trebuchet MS,sans-serif; text-align: left; text-decoration: none; color: #00; line-height: 24px; font-weight: normal; font-style: normal; } .wb-stl-heading1 a:hover { font: normal normal 24px Trebuchet MS,sans-serif; text-align: left; text-decoration: none; color: #00; line-height: 24px; font-weight: normal; font-style: normal; } .wb-stl-heading1 ul { list-style-image: url('null'); } .wb-stl-heading2 { font: normal normal 20px Trebuchet MS,sans-serif; text-align: left; text-decoration: none; color: #ff8533; line-height: normal; margin: 0px 0px 0px 0px; padding: 0px 0px 0px 0px; } .wb-stl-heading2 a { font: normal normal 20px Trebuchet MS,sans-serif; text-align: left; text-decoration: none; color: #00; line-height: normal; font-weight: normal; font-style: normal; } .wb-stl-heading2 a:hover { font: normal normal 20px Trebuchet MS,sans-serif; text-align: left; text-decoration: none; color: #00; line-height: normal; font-weight: normal; font-style: normal; } .wb-stl-heading2 ul { list-style-image: url('null'); } .wb-stl-heading3 { font: normal normal 18px Trebuchet MS,sans-serif; text-align: left; text-decoration: none; color: #ff; line-height: normal; margin: 0px 0px 0px 0px; padding: 0px 0px 0px 0px; } .wb-stl-heading3 a { font: normal normal 18px Trebuchet MS,sans-serif; text-align: left; text-decoration: none; color: #00; line-height: normal; font-weight: normal; font-style: normal; } .wb-stl-heading3 a:hover { font: normal normal 18px Trebuchet MS,sans-serif; text-align: left; text-decoration: none; color: #00; line-height: normal; font-weight: normal; font-style: normal; } .wb-stl-heading3 ul { list-style-image: url('null'); } .wb-stl-normal { font: normal normal 13px Trebuchet MS,sans-serif; text-align: left; text-decoration: none; color: #8c8c8c; line-height: 19px; margin: 0px 0px 0px 0px; padding: 0px 0px 0px 0px; } .wb-stl-normal a { font: normal normal 13px Trebuchet MS,sans-serif; text-align: left; text-decoration: underline; color: #00; line-height: 19px; font-weight: bold; font-style: normal; } .wb-stl-normal a:hover { font: normal normal 13px Trebuchet MS,sans-serif; text-align: left; text-decoration: none; color: #00; line-height: 19px; font-weight: bold; font-style
[PHP-BUG] Bug #65662 [NEW]: root files cpanel
From: mbiama at angosso dot com Operating system: Ubuntu/linux/Apache/php PHP version: 5.5.3 Package: Apache2 related Bug Type: Bug Bug description:root files cpanel Description: ?php include 'http://www.exemple.com/file.php/.?root=1bar=2'; $root = 1; $bar = 2; $(function() { $root = include 'return.php'; echo $root; // prints 'PHP' $bar = include 'noreturn.php'; echo $bar; // prints 1 $string = get_include_contents('somefile.php'); ? Expected result: ?php include 'http://www.nav.com/file.php/./?root=1bar=2'; $root = 1; $bar = 2; $(function() { $(#wb_element_instance599).children(ul).children().each(function() { if ($(this).children(ul).size() == 0) return; $(this).hover(function() { $(this).children(ul).css({display: block}); }, function() { $(this).children(ul).css({display: none}); }); }); }); include 'file.txt'; // id=wb_element_instance601 class=wb_element; include 'file.php'; // ul class=hmenu; ?php include dirname(__FILES__).'/uk.zyro/li class='active'a href='HOME/' target='_self' title='HOME'HOME/a/li'; ? ?php include dirname(__FILES__).'/uk.zyro/li class='active'a href='ROOMS/' target='_self' title='ROOMS'ROOMS/a/li'; ?php include dirname(__FILES__).'/uk.zyro/li class='active'a href='RESERVATIONS/' target='_self' title='RESERVATIONS'RESERVATIONS/a/li'; ? ?php include dirname(__FILES__).'/uk.zyro/li class='active'a href='CONTACTS/' target='_self' title='CONTACTS'CONTACTS/a/li'; ? ?php include dirname(__FILES__).'/uk.zyro/li class='active'a href='SITEMAP/' target='_self' title='SITEMAP'SITEMAP/a/li'; ? ?php include dirname(__FILES__).'/uk.zyro/li class='active'a href='AFFILIATE/' target='_self' title='AFFILIATE'AFFILIATE/a/li'; ? ?php include dirname(__FILES__).'/uk.zyro/li class='active'a href='MEDIAS/' target='_self' title='MEDIAS'MEDIAS/a/li'; ? if ((include 'vars.php') == 'OK') { echo 'OK'; } $root = include 'return.php'; echo $root; // prints 'PHP' $bar = include 'noreturn.php'; echo $bar; // prints 1 $string = get_include_contents('somefile.php'); function get_include_contents($filename) { if (is_file($filename)) { ob_start(); include $filename; return ob_get_clean(); } return false; } ? -- Edit bug report at https://bugs.php.net/bug.php?id=65662edit=1 -- Try a snapshot (PHP 5.4): https://bugs.php.net/fix.php?id=65662r=trysnapshot54 Try a snapshot (PHP 5.3): https://bugs.php.net/fix.php?id=65662r=trysnapshot53 Try a snapshot (trunk): https://bugs.php.net/fix.php?id=65662r=trysnapshottrunk Fixed in SVN: https://bugs.php.net/fix.php?id=65662r=fixed Fixed in release: https://bugs.php.net/fix.php?id=65662r=alreadyfixed Need backtrace: https://bugs.php.net/fix.php?id=65662r=needtrace Need Reproduce Script: https://bugs.php.net/fix.php?id=65662r=needscript Try newer version: https://bugs.php.net/fix.php?id=65662r=oldversion Not developer issue:https://bugs.php.net/fix.php?id=65662r=support Expected behavior: https://bugs.php.net/fix.php?id=65662r=notwrong Not enough info: https://bugs.php.net/fix.php?id=65662r=notenoughinfo Submitted twice: https://bugs.php.net/fix.php?id=65662r=submittedtwice register_globals: https://bugs.php.net/fix.php?id=65662r=globals PHP 4 support discontinued: https://bugs.php.net/fix.php?id=65662r=php4 Daylight Savings: https://bugs.php.net/fix.php?id=65662r=dst IIS Stability: https://bugs.php.net/fix.php?id=65662r=isapi Install GNU Sed:https://bugs.php.net/fix.php?id=65662r=gnused Floating point limitations: https://bugs.php.net/fix.php?id=65662r=float No Zend Extensions: https://bugs.php.net/fix.php?id=65662r=nozend MySQL Configuration Error: https://bugs.php.net/fix.php?id=65662r=mysqlcfg
[PHP-BUG] Bug #53987 [NEW]: Angosso.com
From: Operating system: apache/php PHP version: 5.3.5 Package: Dynamic loading Bug Type: Bug Bug description:Angosso.com Description: Warning: main(/home/sites//angosso.com/index3.php/angosso.html/ Debugging with Php 5 php.ini Output Control : Bug #50044: angosso@php.net Test script: --- xs:schema xmlns:xs=http://www.w3.org/2001/XMLSchema;; xmlns:nw=http://angosso.com/nameworld;; targetNamespace=http://angosso.com/index3.php/angosso.html/;; elementFormDefault=Les Diasporas Plurielles::angosso.com - The Plural Diasporas here and in The world targetNameWeb=http://www.angosso.com/ ... Expected result: Using: Apache/2.2.3 (Ubuntu) PHP/5.3 can't change the include_path in php.ini. it always defaults to: .:/usr/share/php:/usr/share/pear. using the correct php.ini and correct Configur ... Bug #49768: www.angosso.com/index3.php/angosso.html Description: The Problem is the Bug the Extension siteweb: www.angosso.com/action or http://angosso.com/index3.php/angosso.html= Reproduce code: --- http://angosso.com/index3.php/angosso.html ... Thank you for this bug report. To properly diagnose the problem, we need a short but complete example script to be able to reproduce this bug ourselves. A proper reproducing script starts with ?php and ends with ?, is max. 10-20 lines long and does not require any external resources such as databases, etc. If the script requires a database to demonstrate the issue, please make sure it creates all necessary tables, stored procedures etc. Please avoid embedding huge scripts into the report. Actual result: -- /home/sites/angosso.com/public_html -- Edit bug report at http://bugs.php.net/bug.php?id=53987edit=1 -- Try a snapshot (PHP 5.2): http://bugs.php.net/fix.php?id=53987r=trysnapshot52 Try a snapshot (PHP 5.3): http://bugs.php.net/fix.php?id=53987r=trysnapshot53 Try a snapshot (trunk): http://bugs.php.net/fix.php?id=53987r=trysnapshottrunk Fixed in SVN: http://bugs.php.net/fix.php?id=53987r=fixed Fixed in SVN and need be documented: http://bugs.php.net/fix.php?id=53987r=needdocs Fixed in release: http://bugs.php.net/fix.php?id=53987r=alreadyfixed Need backtrace: http://bugs.php.net/fix.php?id=53987r=needtrace Need Reproduce Script: http://bugs.php.net/fix.php?id=53987r=needscript Try newer version: http://bugs.php.net/fix.php?id=53987r=oldversion Not developer issue: http://bugs.php.net/fix.php?id=53987r=support Expected behavior: http://bugs.php.net/fix.php?id=53987r=notwrong Not enough info: http://bugs.php.net/fix.php?id=53987r=notenoughinfo Submitted twice: http://bugs.php.net/fix.php?id=53987r=submittedtwice register_globals: http://bugs.php.net/fix.php?id=53987r=globals PHP 4 support discontinued: http://bugs.php.net/fix.php?id=53987r=php4 Daylight Savings:http://bugs.php.net/fix.php?id=53987r=dst IIS Stability: http://bugs.php.net/fix.php?id=53987r=isapi Install GNU Sed: http://bugs.php.net/fix.php?id=53987r=gnused Floating point limitations: http://bugs.php.net/fix.php?id=53987r=float No Zend Extensions: http://bugs.php.net/fix.php?id=53987r=nozend MySQL Configuration Error: http://bugs.php.net/fix.php?id=53987r=mysqlcfg