PHP PHPSession fixation vulnerability in the Sessions subsystem in PHP before 5.5.2 allows remote attackers…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPPHP before 5.3.9 has improper libxslt security settings, which allows remote attackers to create arb…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPMemory leak in the timezone functionality in PHP before 5.3.9 allows remote attackers to cause a den…
PHP PHPPHP before 5.3.7 does not properly implement the error_log function, which allows context-dependent …
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPcrypt_blowfish before 1.1, as used in PHP before 5.3.7 on certain platforms, PostgreSQL before 8.4.9…
PHP PHPMultiple memory leaks in the OpenSSL extension in PHP before 5.3.6 might allow remote attackers to c…
PHP PHPUnspecified vulnerability in the NumberFormatter::setSymbol (aka numfmt_set_symbol) function in the …
PHP PHPUnspecified vulnerability in the Streams component in PHP before 5.3.6 allows context-dependent atta…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPInput Validation, Integer Overflow, Buffer Overflow
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPThe iconv_mime_decode_headers function in the Iconv extension in PHP before 5.3.4 does not properly …
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPsession.c in the session extension in PHP before 5.2.13, and 5.3.1, does not properly interpret ; (s…
PHP PHPThe unserialize function in PHP 5.3.0 and earlier allows context-dependent attackers to cause a deni…
PHP PHPThe zend_restore_ini_entry_cb function in zend_ini.c in PHP 5.3.0, 5.2.10, and earlier versions allo…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPThe (1) rand and (2) mt_rand functions in PHP 5.2.6 do not produce cryptographically strong random n…
PHP PHPThe session extension in PHP before 5.2.4 might allow local users to bypass open_basedir restriction…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPMultiple integer signedness errors in the printf function family in PHP 4 before 4.4.5 and PHP 5 bef…
PHP PHPPHP 4 before 4.4.5 and PHP 5 before 5.2.1, when using an empty session save path (session.save_path)…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPThe mail function in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 truncates e-mail messages at th…
PHP PHPThe resource system in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allows context-dependent atta…
PHP PHPThe mb_parse_str function in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 sets the internal regis…
PHP PHPThe FDF support (ext/fdf) in PHP 5.2.0 and earlier does not implement the input filtering hooks for …
PHP PHPThe import_request_variables function in PHP 4.0.7 through 4.4.6, and 5.x before 5.2.2, when called …
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.