Filter
AND
-Infinity
0
Trending
Versions
5.2.0
87
5.2.1
81
5.0.0
72
5.3.0
72
5.2.3
70
5.2.4
69
4.2.2
64
5.0.3
64
4.0.1
63
4.0.4
63
4.0.5
63
4.0.6
63
4.1.0
63
4.1.2
63
4.2.0
63
4.2.1
63
4.2.3
63
5.0.2
63
5.2.2
63
4.0.3
62
4.0.7
62
4.1.1
62
5.0.1
62
5.0.5
62
5.2.5
62
5.2.6
62
4.3.0
61
4.3.1
61
5.0.4
61
4.0.2
60
4.3.2
60
4.3.7
60
4.3.10
59
5.1.1
59
5.3.1
59
4.3.3
58
4.3.6
58
4.3.9
58
4.3.5
57
5.2.10
57
4.3.11
56
4.3.8
56
5.1.4
56
4.3.4
55
5.1.0
55
5.2.8
54
4.4.0
51
4.0.0
50
5.1.6
50
4.0-beta1
49
PHPCGI PHP mlog script allows an attacker to read any file on the target server.
First published (updated )
PHPStream HTTP wrapper header check might omit basic auth header
6.3
First published (updated )
PHPStreams HTTP wrapper does not fail for headers with invalid name and no colon
6.3
First published (updated )
PHPlibxml streams use wrong content-type header when requesting a redirected resource
6.3
First published (updated )
PHPStream HTTP wrapper truncates redirect location to 1024 bytes
6.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPHeader parser of http stream wrapper does not handle folded headers
6.3
First published (updated )
PHPGurukul Land Record SystemSQL Injection
5.5
EPSS
0.08%
First published (updated )
PHPPotential buffer overflow in php_cli_server_startup_workers
6.2
First published (updated )
Ubuntu PHP-FPMErroneous parsing of multipart form data
5.3
EPSS
0.05%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPFilter bypass in filter_var (FILTER_VALIDATE_URL)
5.3
EPSS
0.08%
First published (updated )
redhat/phpPHP function password_verify can erroneously return true when argument contains NUL
6.5
First published (updated )
redhat/php__Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix
6.5
First published (updated )
ubuntu/libgd2Fixed bug (Potential infinite loop in gdImageCreateFromGifCtx). (CVE-2018-5711)
5.5
First published (updated )
PHPLeak partial content of the heap through heap buffer over-read in mysqlnd
5.8
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPAccording to <a href="https://www.php.net/manual/en/security.cgi-bin.force-redirect.php">https://www…
First published (updated )
PHPIn PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, core path resolution functio…
First published (updated )
ubuntu/php8.1Missing error check and insufficient random bytes in HTTP Digest authentication for SOAP
4.3
First published (updated )
PHP$_COOKIE names string replacement (. -> _): cookie integrity vulnerabilities
6.5
First published (updated )
PHPphar wrapper can occur dos when using quine gzip file
5.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPSpecial characters break path parsing in XML functions
5.3
First published (updated )
UbuntuPHP parses encoded cookie names so malicious `__Host-` cookies can be sent
5.3
First published (updated )
UbuntuWrong ciphertext/tag in AES-CCM encryption for a 12 bytes IV
6.5
First published (updated )
PHPget_headers() silently truncates after a null byte
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPFiles added to tar with Phar::buildFromIterator have all-access permissions
5.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.