Filters

PHP PHPPotential buffer overflow in php_cli_server_startup_workers

First published (updated )

PHP PHPOOB read due to insufficient input validation in imageloadfont()

7.1
First published (updated )

PHP PHPFreeing unallocated memory in php_pgsql_free_params()

8.1
First published (updated )

PHP PHPmysqlnd/pdo password buffer overflow

8.8
First published (updated )

PHP PHPUAF due to php_filter_float() failing

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

PHP PHPSpecial characters break path parsing in XML functions

First published (updated )

PHP PHPPHP-FPM memory access in root process leading to privilege escalation

7.8
First published (updated )

PHP PHPZipArchive::extractTo may extract outside of destination dir

First published (updated )

PHP PHPIncorrect URL validation in FILTER_VALIDATE_URL

First published (updated )

PHP PHPMultiple vulnerabilities in Firebird client extension

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

PHP PHPNull Dereference in SoapClient

7.5
First published (updated )

PHP PHPFILTER_VALIDATE_URL accepts URLs with invalid userinfo

First published (updated )

Canonical Ubuntu LinuxPHP parses encoded cookie names so malicious `__Host-` cookies can be sent

First published (updated )

Canonical Ubuntu LinuxWrong ciphertext/tag in AES-CCM encryption for a 12 bytes IV

First published (updated )

PHP PHPUse of freed hash key in the phar_parse_zipfile function

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

PHP PHPTemporary files are not cleaned after OOM when parsing HTTP request data

7.5
First published (updated )

PHP PHPOOB Read in urldecode()

7.5
First published (updated )

PHP PHPget_headers() silently truncates after a null byte

First published (updated )

Canonical Ubuntu Linuxmb_strtolower (UTF-32LE): stack-buffer-overflow at php_unicode_tolower_full

8.8
First published (updated )

Canonical Ubuntu LinuxUse-of-uninitialized-value in exif

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

PHP PHPheap-buffer-overflow in phar_extract_file

First published (updated )

Canonical Ubuntu LinuxNull Pointer Dereference in PHP Session Upload Progress

7.5
First published (updated )

PHP PHPOOB read in php_strip_tags_ex

First published (updated )

PHP PHPglobal buffer-overflow in mbfl_filt_conv_big5_wchar

First published (updated )

PHP PHPFiles added to tar with Phar::buildFromIterator have all-access permissions

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Canonical Ubuntu LinuxHeap-buffer-overflow READ in exif

First published (updated )

Canonical Ubuntu LinuxBuffer underflow in bc_shift_addsub

First published (updated )

Canonical Ubuntu LinuxDirectoryIterator class silently truncates after a null byte

First published (updated )

PHP PHPlink() silently truncates after a null byte on Windows

7.5
First published (updated )

PHP PHPmail() may release string with refcount==1 twice

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Canonical Ubuntu LinuxUse-after-free in exif parsing under memory sanitizer

First published (updated )

PHP PHPLast updated 24 July 2024

7.5
First published (updated )

PHP PHPInteger Overflow, Buffer Overflow, SQL Injection

First published (updated )

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203