Filter
AND

PHPBuffer overflow and overread in phar_dir_read()

critical
9.8
First published (updated )
CVE-2023-3824

PHPSecurity issue with external entity loading in XML without enabling it

high
8.6
First published (updated )
CVE-2023-3823

ubuntu/php8.1Missing error check and insufficient random bytes in HTTP Digest authentication for SOAP

medium
4.3
First published (updated )
CVE-2023-3247

PHPPotential buffer overflow in php_cli_server_startup_workers

medium
6.2
First published (updated )
CVE-2022-4900

PHPpassword_verify() always returns true for some invalid hashes

high
8.1
First published (updated )
CVE-2023-0567

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

PHPArray overrun in common path resolve code

high
8.1
First published (updated )
CVE-2023-0568

PHPDoS vulnerability when parsing multipart request body

high
7.5
First published (updated )
CVE-2023-0662

PHPOOB read due to insufficient input validation in imageloadfont()

high
7.1
First published (updated )
CVE-2022-31630

PHPInteger Overflow, Buffer Overflow

critical
9.8
First published (updated )
CVE-2022-37454

PHP$_COOKIE names string replacement (. -> _): cookie integrity vulnerabilities

medium
6.5
First published (updated )
CVE-2022-31629

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

PHPphar wrapper can occur dos when using quine gzip file

medium
5.5
First published (updated )
CVE-2022-31628

PHPFreeing unallocated memory in php_pgsql_free_params()

high
8.1
First published (updated )
CVE-2022-31625

PHPmysqlnd/pdo password buffer overflow

high
8.8
First published (updated )
CVE-2022-31626

PHPUAF due to php_filter_float() failing

critical
9.8
First published (updated )
CVE-2021-21708

PHPSpecial characters break path parsing in XML functions

medium
5.3
First published (updated )
CVE-2021-21707

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

PHPPHP-FPM memory access in root process leading to privilege escalation

high
7.8
First published (updated )
CVE-2021-21703

PHPZipArchive::extractTo may extract outside of destination dir

medium
6.5
First published (updated )
CVE-2021-21706

PHPIncorrect URL validation in FILTER_VALIDATE_URL

medium
5.3
First published (updated )
CVE-2021-21705

PHPMultiple vulnerabilities in Firebird client extension

medium
5.9
First published (updated )
CVE-2021-21704

Xmbforum2 XmbXSS

medium
6.1
First published (updated )
CVE-2021-29399

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

PHPNull Dereference in SoapClient

high
7.5
First published (updated )
CVE-2021-21702

PHPFILTER_VALIDATE_URL accepts URLs with invalid userinfo

medium
5.3
First published (updated )
CVE-2020-7071

PHPLast updated 24 July 2024

high
7.5
First published (updated )
CVE-2017-9118

PHPLast updated 24 July 2024

critical
9.8
First published (updated )
CVE-2017-8923

PHPInteger Overflow, Buffer Overflow, SQL Injection

critical
9.8
First published (updated )
CVE-2017-9120

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203