Filters
PHP PHPZend/zend_exceptions.c in PHP, possibly 5.x before 5.6.28 and 7.x before 7.0.13, allows remote attac…
7.5
First published (updated )
PHP PHPext/soap/soap.c in PHP before 5.3.22 and 5.4.x before 5.4.13 does not validate the relationship betw…
7.5
First published (updated )
PHP PHPMultiple format string vulnerabilities in phar_object.c in the phar extension in PHP 5.3.5 and earli…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPThe proc_open function in ext/standard/proc_open.c in PHP before 5.2.11 and 5.3.x before 5.3.1 does …
7.5
First published (updated )
PHP PHPUnspecified vulnerability in PHP before 5.2.11, and 5.3.x before 5.3.1, has unknown impact and attac…
7.5
First published (updated )
PHP PHPUnspecified vulnerability in the imagecolortransparent function in PHP before 5.2.11 has unknown imp…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPPHP 5 before 5.2.7 does not properly initialize the page_uid and page_gid global variables for use b…
7.5
First published (updated )
PHP PHPPHP 5 before 5.2.7 does not enforce the error_log safe_mode restrictions when safe_mode is enabled t…
7.5
First published (updated )
PHP PHPThe GENERATE_SEED macro in PHP 4.x before 4.4.8 and 5.x before 5.2.5, when running on 32-bit systems…
7.5
First published (updated )
PHP PHPThe money_format function in PHP 5 before 5.2.4, and PHP 4 before 4.4.8, permits multiple (1) %i and…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPPHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allows context-dependent attackers to read arbitrary…
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPThe session extension in PHP 4 before 4.4.5, and PHP 5 before 5.2.1, calculates the reference count …
7.5
First published (updated )
PHP PHPThe compress.bzip2:// URL wrapper provided by the bz2 extension in PHP before 4.4.7, and 5.x before …
7.8
First published (updated )
PHP PHPThe shmop functions in PHP before 4.4.5, and before 5.2.1 in the 5.x series, do not verify that thei…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPBuffer Overflow, SQL Injection, Integer Overflow
7.5
First published (updated )
PHP PHPMultiple format string vulnerabilities in PHP before 5.2.1 might allow attackers to execute arbitrar…
7.5
First published (updated )
PHP PHPPHP before 5.2.1 allows attackers to bypass safe_mode and open_basedir restrictions via unspecified …
7.5
First published (updated )
PHP PHPUnspecified vulnerabilities in PHP, probably before 5.2.0, allow local users to bypass open_basedir …
7.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPThe (1) file_exists and (2) imap_reopen functions in PHP before 5.1.5 do not check for the safe_mode…
7.2
First published (updated )
PHP PHPPHP before 4.4.3 and 5.x before 5.1.4 does not limit the character set of the session identifier (PH…
7.5
First published (updated )