Filters
PHP PHPThe zend_restore_ini_entry_cb function in zend_ini.c in PHP 5.3.0, 5.2.10, and earlier versions allo…
6.4
First published (updated )
PHP PHPThe (1) rand and (2) mt_rand functions in PHP 5.2.6 do not produce cryptographically strong random n…
5.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPMultiple integer signedness errors in the printf function family in PHP 4 before 4.4.5 and PHP 5 bef…
6.8
First published (updated )
PHP PHPPHP 4 before 4.4.5 and PHP 5 before 5.2.1, when using an empty session save path (session.save_path)…
4.6
First published (updated )
PHP PHPThe mail function in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 truncates e-mail messages at th…
First published (updated )
PHP PHPThe resource system in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allows context-dependent atta…
6.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPThe mb_parse_str function in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 sets the internal regis…
6.8
First published (updated )
PHP PHPThe php_binary serialization handler in the session extension in PHP before 4.4.5, and 5.x before 5.…
First published (updated )
PHP PHPThe ovrimos_longreadlen function in the Ovrimos extension for PHP before 4.4.5 allows context-depend…
5.1
First published (updated )
PHP PHPThe ovrimos_close function in the Ovrimos extension for PHP before 4.4.5 can trigger efree of an arb…
5.1
First published (updated )
PHP PHPBuffer underflow in PHP before 5.2.1 allows attackers to cause a denial of service via unspecified v…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPscanf.c in PHP 5.1.4 and earlier, and 4.4.3 and earlier, allows context-dependent attackers to execu…
4.6
First published (updated )
PHP PHPPHP before 5.1.3-RC1 might allow remote attackers to obtain portions of memory via crafted binary da…
First published (updated )
PHP PHPArgument injection vulnerability in certain PHP 3.x, 4.x, and 5.x applications, when used with sendm…
6.4
First published (updated )
PHP PHPThe parse_str function in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5, when called with only one paramet…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPPHP 4.0 with cURL functions allows remote attackers to bypass the open_basedir setting and read arbi…
First published (updated )
PHP PHPThe memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, under certain conditi…
5.1
First published (updated )
PHP PHPThe imap_header function in the IMAP functionality for PHP before 4.3.0 allows remote attackers to c…
First published (updated )
PHP PHPThe mail function in PHP 4.x to 4.2.2 does not filter ASCII control characters from its arguments, w…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPmove_uploaded_file in PHP does not does not check for the base directory (open_basedir), which could…
First published (updated )