Filter
AND
PHPPHP-CGI Query String Parameter Vulnerability
First published (updated )
PHPsession.c in the session extension in PHP before 5.2.13, and 5.3.1, does not properly interpret ; (s…
First published (updated )
PHPThe FDF support (ext/fdf) in PHP 5.2.0 and earlier does not implement the input filtering hooks for …
First published (updated )
PHPSession fixation vulnerability in the Sessions subsystem in PHP before 5.5.2 allows remote attackers…
6.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPThe safe mode checks in PHP 4.x to 4.3.9 and PHP 5.x to 5.0.2 truncate the file path before passing …
10
First published (updated )
PHPPHP 4.x to 4.3.9, and PHP 5.x to 5.0.2, when running in safe mode on a multithreaded Unix webserver,…
10
First published (updated )
PHPThe addslashes function in PHP 4.3.9 does not properly escape a NULL (/0) character, which may allow…
First published (updated )
PHPphp_variables.c in PHP before 5.0.2 allows remote attackers to read sensitive memory contents via (1…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPrfc1867.c in PHP before 5.0.2 allows local users to upload files to arbitrary locations via a PHP sc…
2.1
First published (updated )
PHPThe apache2handler SAPI (sapi_apache2.c) in the Apache module (mod_php) for PHP 5.x before 5.1.0 fin…
2.1
First published (updated )
PHPThe RFC1867 file upload feature in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5, when register_globals is…
7.5
First published (updated )
PHPThe parse_str function in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5, when called with only one paramet…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPUnspecified vulnerabilities in PHP, probably before 5.2.0, allow local users to bypass open_basedir …
7.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPPHP 4.x up to 4.4.4 and PHP 5 up to 5.1.6 allows local users to bypass certain Apache HTTP Server ht…
3.6
First published (updated )
PHPPHP before 4.4.3 and 5.x before 5.1.4 does not limit the character set of the session identifier (PH…
7.5
First published (updated )
PHPscanf.c in PHP 5.1.4 and earlier, and 4.4.3 and earlier, allows context-dependent attackers to execu…
4.6
First published (updated )
PHPzend_hash_del_key_or_index in zend_hash.c in PHP before 4.4.3 and 5.x before 5.1.3 can cause zend_ha…
9.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPThe error_log function in basic_functions.c in PHP before 4.4.4 and 5.x before 5.1.5 allows local us…
4.6
First published (updated )
PHPThe copy function in file.c in PHP 4.4.2 and 5.1.2 allows local users to bypass safe mode and read a…
2.1
First published (updated )
PHPPHP before 5.1.3-RC1 might allow remote attackers to obtain portions of memory via crafted binary da…
First published (updated )
PHPDirectory traversal vulnerability in file.c in PHP 4.4.2 and 5.1.2 allows local users to bypass open…
2.6
First published (updated )
PHPThe c-client library 2000, 2001, or 2004 for PHP before 4.4.4 and 5.x before 5.1.5 do not check the …
9.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.