Filter
AND
AND
PHPsession.c in the session extension in PHP before 5.2.13, and 5.3.1, does not properly interpret ; (s…
First published (updated )
PHPSession fixation vulnerability in the Sessions subsystem in PHP before 5.5.2 allows remote attackers…
6.8
First published (updated )
PHPThe parse_str function in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5, when called with only one paramet…
First published (updated )
PHPscanf.c in PHP 5.1.4 and earlier, and 4.4.3 and earlier, allows context-dependent attackers to execu…
4.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPThe error_log function in basic_functions.c in PHP before 4.4.4 and 5.x before 5.1.5 allows local us…
4.6
First published (updated )
PHPPHP before 5.1.3-RC1 might allow remote attackers to obtain portions of memory via crafted binary da…
First published (updated )
PHPArgument injection vulnerability in certain PHP 3.x, 4.x, and 5.x applications, when used with sendm…
6.4
First published (updated )
PHPThe session extension in PHP before 5.2.4 might allow local users to bypass open_basedir restriction…
4.4
First published (updated )
PHPMultiple integer signedness errors in the printf function family in PHP 4 before 4.4.5 and PHP 5 bef…
6.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPPHP 4 before 4.4.5 and PHP 5 before 5.2.1, when using an empty session save path (session.save_path)…
4.6
First published (updated )
PHPThe mail function in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 truncates e-mail messages at th…
First published (updated )
PHPThe resource system in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allows context-dependent atta…
6.8
First published (updated )
PHPThe mb_parse_str function in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 sets the internal regis…
6.8
First published (updated )
PHPThe php_binary serialization handler in the session extension in PHP before 4.4.5, and 5.x before 5.…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPThe unserialize function in PHP 5.3.0 and earlier allows context-dependent attackers to cause a deni…
First published (updated )
PHPThe zend_restore_ini_entry_cb function in zend_ini.c in PHP 5.3.0, 5.2.10, and earlier versions allo…
6.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPPHP before 5.3.7 does not properly implement the error_log function, which allows context-dependent …
First published (updated )
PHPcrypt_blowfish before 1.1, as used in PHP before 5.3.7 on certain platforms, PostgreSQL before 8.4.9…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPMultiple memory leaks in the OpenSSL extension in PHP before 5.3.6 might allow remote attackers to c…
4.3
First published (updated )
PHPUnspecified vulnerability in the NumberFormatter::setSymbol (aka numfmt_set_symbol) function in the …
First published (updated )
PHPUnspecified vulnerability in the Streams component in PHP before 5.3.6 allows context-dependent atta…
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.