Filter
AND
-Infinity
0

Trending

Last week
Last month
Last year

PHPIn PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* befo…

medium
4
First published (updated )
REDHAT-BUG-2356046

PHPIn PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* befo…

medium
4
First published (updated )
REDHAT-BUG-2356042

PHPIn PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* befo…

medium
4
First published (updated )
REDHAT-BUG-2356043

PHPIn PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* befo…

medium
4
First published (updated )
REDHAT-BUG-2356041

PHPIn PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* befo…

medium
4
First published (updated )
REDHAT-BUG-2355917

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

PHPStream HTTP wrapper header check might omit basic auth header

medium
6.3
First published (updated )
CVE-2025-1736

PHPStreams HTTP wrapper does not fail for headers with invalid name and no colon

medium
6.3
First published (updated )
CVE-2025-1734

PHPlibxml streams use wrong content-type header when requesting a redirected resource

medium
6.3
First published (updated )
CVE-2025-1219

PHPStream HTTP wrapper truncates redirect location to 1024 bytes

medium
6.3
First published (updated )
CVE-2025-1861

PHPHeader parser of http stream wrapper does not handle folded headers

medium
6.3
First published (updated )
CVE-2025-1217

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

PHPGurukul Land Record SystemSQL Injection

medium
5.5
EPSS
0.08%
First published (updated )
CVE-2025-25462

PHPIn PHP versions 8.1.* before 8.1.31, 8.2.* before 8.2.26, 8.3.* before 8.3.14, when using streams wi…

medium
4
First published (updated )
REDHAT-BUG-2328523

PHPIn PHP versions 8.1.* before 8.1.31, 8.2.* before 8.2.26, 8.3.* before 8.3.14, due to an error in&nb…

medium
4
First published (updated )
REDHAT-BUG-2328521

PHPIn PHP versions 8.1.* before 8.1.31, 8.2.* before 8.2.26, 8.3.* before 8.3.14, a hostile MySQL serve…

medium
4
First published (updated )
REDHAT-BUG-2327960

PHPLeak partial content of the heap through heap buffer over-read in mysqlnd

medium
5.8
EPSS
0.04%
First published (updated )
CVE-2024-8929

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Ubuntu PHP-FPMErroneous parsing of multipart form data

medium
5.3
EPSS
0.05%
First published (updated )
CVE-2024-8925

PHPPHP is vulnerable to the Marvin Attack

medium
5.9
First published (updated )
CVE-2024-2408

PHPFilter bypass in filter_var (FILTER_VALIDATE_URL)

medium
5.3
EPSS
0.08%
First published (updated )
CVE-2024-5458

redhat/phpPHP function password_verify can erroneously return true when argument contains NUL

medium
6.5
First published (updated )
CVE-2024-3096

redhat/php__Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix

medium
6.5
First published (updated )
CVE-2024-2756

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

ubuntu/php8.1Missing error check and insufficient random bytes in HTTP Digest authentication for SOAP

medium
4.3
First published (updated )
CVE-2023-3247

PHPPotential buffer overflow in php_cli_server_startup_workers

medium
6.2
First published (updated )
CVE-2022-4900

PHPIn PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, core path resolution functio…

medium
4
First published (updated )
REDHAT-BUG-2170770

PHPIn PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, excessive number of parts in…

medium
4
First published (updated )
REDHAT-BUG-2170761

PHP$_COOKIE names string replacement (. -> _): cookie integrity vulnerabilities

medium
6.5
First published (updated )
CVE-2022-31629

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

PHPphar wrapper can occur dos when using quine gzip file

medium
5.5
First published (updated )
CVE-2022-31628

PHPSpecial characters break path parsing in XML functions

medium
5.3
First published (updated )
CVE-2021-21707

PHPZipArchive::extractTo may extract outside of destination dir

medium
6.5
First published (updated )
CVE-2021-21706

PHPIncorrect URL validation in FILTER_VALIDATE_URL

medium
5.3
First published (updated )
CVE-2021-21705

PHPMultiple vulnerabilities in Firebird client extension

medium
5.9
First published (updated )
CVE-2021-21704

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203