PHP PHPSpecial characters break path parsing in XML functions
PHP PHPPHP-FPM memory access in root process leading to privilege escalation
PHP PHPZipArchive::extractTo may extract outside of destination dir
PHP PHPIncorrect URL validation in FILTER_VALIDATE_URL
PHP PHPMultiple vulnerabilities in Firebird client extension
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPFILTER_VALIDATE_URL accepts URLs with invalid userinfo
Canonical Ubuntu LinuxPHP parses encoded cookie names so malicious `__Host-` cookies can be sent
Canonical Ubuntu LinuxWrong ciphertext/tag in AES-CCM encryption for a 12 bytes IV
PHP PHPUse of freed hash key in the phar_parse_zipfile function
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPTemporary files are not cleaned after OOM when parsing HTTP request data
PHP PHPget_headers() silently truncates after a null byte
Canonical Ubuntu Linuxmb_strtolower (UTF-32LE): stack-buffer-overflow at php_unicode_tolower_full
Canonical Ubuntu LinuxUse-of-uninitialized-value in exif
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Canonical Ubuntu LinuxNull Pointer Dereference in PHP Session Upload Progress
PHP PHPglobal buffer-overflow in mbfl_filt_conv_big5_wchar
PHP PHPFiles added to tar with Phar::buildFromIterator have all-access permissions
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Canonical Ubuntu LinuxHeap-buffer-overflow READ in exif
Canonical Ubuntu LinuxBuffer underflow in bc_shift_addsub
Canonical Ubuntu LinuxDirectoryIterator class silently truncates after a null byte
PHP PHPlink() silently truncates after a null byte on Windows
PHP PHPmail() may release string with refcount==1 twice
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Canonical Ubuntu LinuxUse-after-free in exif parsing under memory sanitizer
redhat/phpPHP FastCGI Process Manager (FPM) Buffer Overflow Vulnerability
Canonical Ubuntu Linuxheap-buffer-overflow on exif_scan_thumbnail in EXIF extension
Canonical Ubuntu Linuxheap-buffer-overflow on exif_process_user_comment in EXIF extension
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Canonical Ubuntu LinuxHeap over-read in PHP EXIF extension
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Canonical Ubuntu LinuxHeap over-read in PHP EXIF extension
Canonical Ubuntu LinuxHeap over-read in PHP EXIF extension
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPFixed bug (Negative size parameter in mb_split). (CVE-2019-9025)
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.