Filter
AND
PHPPHP-CGI Query String Parameter Vulnerability
First published (updated )
PHPsession.c in the session extension in PHP before 5.2.13, and 5.3.1, does not properly interpret ; (s…
First published (updated )
PHPThe FDF support (ext/fdf) in PHP 5.2.0 and earlier does not implement the input filtering hooks for …
First published (updated )
PHPSession fixation vulnerability in the Sessions subsystem in PHP before 5.5.2 allows remote attackers…
6.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPThe apache2handler SAPI (sapi_apache2.c) in the Apache module (mod_php) for PHP 5.x before 5.1.0 fin…
2.1
First published (updated )
PHPThe RFC1867 file upload feature in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5, when register_globals is…
7.5
First published (updated )
PHPThe parse_str function in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5, when called with only one paramet…
First published (updated )
PHPThe php_next_marker function in image.c for PHP 4.2.2, 4.3.9, 4.3.10 and 5.0.3, as reachable by the …
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPThe php_handle_iff function in image.c for PHP 4.2.2, 4.3.9, 4.3.10 and 5.0.3, as reachable by the g…
First published (updated )
PHPUnspecified vulnerabilities in PHP, probably before 5.2.0, allow local users to bypass open_basedir …
7.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPPHP 4.x up to 4.4.4 and PHP 5 up to 5.1.6 allows local users to bypass certain Apache HTTP Server ht…
3.6
First published (updated )
PHPPHP before 4.4.3 and 5.x before 5.1.4 does not limit the character set of the session identifier (PH…
7.5
First published (updated )
PHPscanf.c in PHP 5.1.4 and earlier, and 4.4.3 and earlier, allows context-dependent attackers to execu…
4.6
First published (updated )
PHPzend_hash_del_key_or_index in zend_hash.c in PHP before 4.4.3 and 5.x before 5.1.3 can cause zend_ha…
9.3
First published (updated )
PHPThe error_log function in basic_functions.c in PHP before 4.4.4 and 5.x before 5.1.5 allows local us…
4.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPThe copy function in file.c in PHP 4.4.2 and 5.1.2 allows local users to bypass safe mode and read a…
2.1
First published (updated )
PHPPHP before 5.1.3-RC1 might allow remote attackers to obtain portions of memory via crafted binary da…
First published (updated )
PHPDirectory traversal vulnerability in file.c in PHP 4.4.2 and 5.1.2 allows local users to bypass open…
2.6
First published (updated )
PHPThe c-client library 2000, 2001, or 2004 for PHP before 4.4.4 and 5.x before 5.1.5 do not check the …
9.3
First published (updated )
PHPArgument injection vulnerability in certain PHP 3.x, 4.x, and 5.x applications, when used with sendm…
6.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPArgument injection vulnerability in certain PHP 4.x and 5.x applications, when used with sendmail an…
3.2
First published (updated )
PHPThe money_format function in PHP 5 before 5.2.4, and PHP 4 before 4.4.8, permits multiple (1) %i and…
7.5
First published (updated )
PHPThe session extension in PHP before 5.2.4 might allow local users to bypass open_basedir restriction…
4.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.