Filter
AND
AND
PHPThe imap_header function in the IMAP functionality for PHP before 4.3.0 allows remote attackers to c…
First published (updated )
PHPThe mail function in PHP 4.x to 4.2.2 does not filter ASCII control characters from its arguments, w…
First published (updated )
PHPmove_uploaded_file in PHP does not does not check for the base directory (open_basedir), which could…
First published (updated )
PHPPHP 4.0 with cURL functions allows remote attackers to bypass the open_basedir setting and read arbi…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPThe memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, under certain conditi…
5.1
First published (updated )
PHPThe parse_str function in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5, when called with only one paramet…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPscanf.c in PHP 5.1.4 and earlier, and 4.4.3 and earlier, allows context-dependent attackers to execu…
4.6
First published (updated )
PHPThe error_log function in basic_functions.c in PHP before 4.4.4 and 5.x before 5.1.5 allows local us…
4.6
First published (updated )
PHPPHP before 5.1.3-RC1 might allow remote attackers to obtain portions of memory via crafted binary da…
First published (updated )
PHPArgument injection vulnerability in certain PHP 3.x, 4.x, and 5.x applications, when used with sendm…
6.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPThe session extension in PHP before 5.2.4 might allow local users to bypass open_basedir restriction…
4.4
First published (updated )
PHPMultiple integer signedness errors in the printf function family in PHP 4 before 4.4.5 and PHP 5 bef…
6.8
First published (updated )
PHPPHP 4 before 4.4.5 and PHP 5 before 5.2.1, when using an empty session save path (session.save_path)…
4.6
First published (updated )
PHPThe mail function in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 truncates e-mail messages at th…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPThe resource system in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allows context-dependent atta…
6.8
First published (updated )
PHPThe mb_parse_str function in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 sets the internal regis…
6.8
First published (updated )
PHPThe zip:// URL wrapper provided by the PECL zip extension in PHP before 4.4.7, and 5.2.0 and 5.2.1, …
First published (updated )
PHPThe php_binary serialization handler in the session extension in PHP before 4.4.5, and 5.x before 5.…
First published (updated )
PHPThe import_request_variables function in PHP 4.0.7 through 4.4.6, and 5.x before 5.2.2, when called …
6.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPThe ovrimos_longreadlen function in the Ovrimos extension for PHP before 4.4.5 allows context-depend…
5.1
First published (updated )
PHPThe ovrimos_close function in the Ovrimos extension for PHP before 4.4.5 can trigger efree of an arb…
5.1
First published (updated )
PHPBuffer underflow in PHP before 5.2.1 allows attackers to cause a denial of service via unspecified v…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.