Latest critical severity vulnerabilities for vendor "php"

composer/phenx/php-svg-libphp-svg-lib lacks path validation on font through SVG inline styles

critical

9.8

EPSS

0.04%

First published (updated )

CVE-2024-25117

debian/php7.4OOB access in ldap_escape

critical

9.8

EPSS

0.04%

First published (updated )

CVE-2024-8932

PHPPHP-CGI Query String Parameter Vulnerability

critical

9.8

Exploited

First published (updated )

CVE-2012-1823

PHPLast updated 24 July 2024

critical

9.8

First published (updated )

CVE-2017-8923

PHPPHP-CGI OS Command Injection Vulnerability

critical

9.8

Exploited

EPSS

96.68%

First published (updated )

CVE-2024-4577

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

PHPBuffer overflow and overread in phar_dir_read()

critical

9.8

First published (updated )

CVE-2023-3824

PHPInteger overflow in the firebird and dblib quoters causing OOB writes

critical

9.8

First published (updated )

CVE-2024-11236

PHPInteger Overflow, Buffer Overflow

critical

9.8

First published (updated )

CVE-2022-37454

PHPOOB read in php_strip_tags_ex

critical

9.1

First published (updated )

CVE-2020-7059

PHPglobal buffer-overflow in mbfl_filt_conv_big5_wchar

critical

9.1

First published (updated )

CVE-2020-7060

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Ubuntu LinuxLast updated 24 July 2024

critical

9.8

First published (updated )

CVE-2019-9641

PHPFixed bug (Negative size parameter in mb_split). (CVE-2019-9025)

critical

9.8

First published (updated )

CVE-2019-9025

PHPBuffer Overflow

critical

9.8

First published (updated )

CVE-2019-9023

PHPUse After Free, Buffer Overflow

critical

9.8

First published (updated )

CVE-2019-9020

PHPBuffer Overflow

critical

9.8

First published (updated )

CVE-2019-9021

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

redhat/phpUnderflow in PHP-FPM can lead to RCE

critical

9.8

Exploited

First published (updated )

CVE-2019-11043

PHPOut-of-bounds read in iconv.c

critical

9.1

First published (updated )

CVE-2019-11039

PHPHeap buffer overflow in EXIF extension

critical

9.1

First published (updated )

CVE-2019-11040

Ubuntu LinuxHeap over-read in PHP EXIF extension

critical

9.1

First published (updated )

CVE-2019-11036

redhat/phpBuffer Overflow

critical

9.8

First published (updated )

CVE-2018-7584

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

PHPLast updated 24 July 2024

critical

9.8

First published (updated )

CVE-2017-9227

PHPLast updated 24 July 2024

critical

9.8

First published (updated )

CVE-2017-9228

PHPLast updated 24 July 2024

critical

9.8

First published (updated )

CVE-2017-9224

PHPLast updated 24 July 2024

critical

9.8

First published (updated )

CVE-2017-9226

PHPInteger Overflow, Buffer Overflow, SQL Injection

critical

9.8

First published (updated )

CVE-2017-9120

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

debian/php5Last updated 24 July 2024

critical

9.8

First published (updated )

CVE-2017-9119

PHPLast updated 24 July 2024

critical

9.8

First published (updated )

CVE-2017-12933

PHPBuffer Overflow

critical

9.8

First published (updated )

CVE-2017-11362

PHPLast updated 24 July 2024

critical

9.1

First published (updated )

CVE-2017-11147

PHPBuffer Overflow

critical

9.8

First published (updated )

CVE-2016-4544

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Software

composer/phenx/php-svg-libphp-svg-lib lacks path validation on font through SVG inline styles

debian/php7.4OOB access in ldap_escape

PHPPHP-CGI Query String Parameter Vulnerability

PHPLast updated 24 July 2024

PHPPHP-CGI OS Command Injection Vulnerability

Never miss a vulnerability like this again

PHPBuffer overflow and overread in phar_dir_read()

PHPInteger overflow in the firebird and dblib quoters causing OOB writes

PHPInteger Overflow, Buffer Overflow

PHPOOB read in php_strip_tags_ex

PHPglobal buffer-overflow in mbfl_filt_conv_big5_wchar

Never miss a vulnerability like this again

Ubuntu LinuxLast updated 24 July 2024

PHPFixed bug (Negative size parameter in mb_split). (CVE-2019-9025)

PHPBuffer Overflow

PHPUse After Free, Buffer Overflow

PHPBuffer Overflow

Never miss a vulnerability like this again

redhat/phpUnderflow in PHP-FPM can lead to RCE

PHPOut-of-bounds read in iconv.c

PHPHeap buffer overflow in EXIF extension

Ubuntu LinuxHeap over-read in PHP EXIF extension

redhat/phpBuffer Overflow

Never miss a vulnerability like this again

PHPLast updated 24 July 2024

PHPLast updated 24 July 2024

PHPLast updated 24 July 2024

PHPLast updated 24 July 2024

PHPInteger Overflow, Buffer Overflow, SQL Injection

Never miss a vulnerability like this again

debian/php5Last updated 24 July 2024

PHPLast updated 24 July 2024

PHPBuffer Overflow

PHPLast updated 24 July 2024

PHPBuffer Overflow

Never miss a vulnerability like this again

Company

Resources

Contact