Filters
PHP PHPBuffer overflow and overread in phar_dir_read()
9.8
First published (updated )
PHP PHPSecurity issue with external entity loading in XML without enabling it
8.6
First published (updated )
PHP PHPMissing error check and insufficient random bytes in HTTP Digest authentication for SOAP
4.3
First published (updated )
PHP PHPPotential buffer overflow in php_cli_server_startup_workers
6.2
First published (updated )
PHP PHPpassword_verify() always returns true for some invalid hashes
8.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPDoS vulnerability when parsing multipart request body
7.5
First published (updated )
PHP PHPOOB read due to insufficient input validation in imageloadfont()
7.1
First published (updated )
PHP PHP$_COOKIE names string replacement (. -> _): cookie integrity vulnerabilities
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPphar wrapper can occur dos when using quine gzip file
5.5
First published (updated )
PHP PHPFreeing unallocated memory in php_pgsql_free_params()
8.1
First published (updated )
PHP PHPSpecial characters break path parsing in XML functions
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPPHP-FPM memory access in root process leading to privilege escalation
7.8
First published (updated )
PHP PHPZipArchive::extractTo may extract outside of destination dir
6.5
First published (updated )
PHP PHPIncorrect URL validation in FILTER_VALIDATE_URL
5.3
First published (updated )
PHP PHPMultiple vulnerabilities in Firebird client extension
5.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPFILTER_VALIDATE_URL accepts URLs with invalid userinfo
5.3
First published (updated )
PHP PHPInteger Overflow, Buffer Overflow, SQL Injection
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.