Filter
Software
php
723
php php
10
php pear
5
php archive tar
4
php-fpm php-fpm
4
php pearweb
2
php php oniguruma-mod
2
php php script index
2
php animated smiley generator
1
php ar memberscript
1
php blog cms
1
php bloq
1
php com extensions
1
php directory listing script
1
php errordocs
1
php ext-http
1
php f1 maxs file uploader
1
php fastcgi process manager (fpm)
1
php imagick
1
php memcached
1
php mysql banner exchange
1
php mysql extension
1
php pecl http
1
php phpsquidpass
1
php xhprof
1
php xml rpc
1
Fedoraproject FedoraPEAR Archive_Tar Improper Link Resolution Vulnerability
First published (updated )
debian/php7.4Leak partial content of the heap through heap buffer over-read in mysqlnd
5.8
EPSS
0.04%
First published (updated )
PHPPHP-CGI Query String Parameter Vulnerability
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPPHP-CGI OS Command Injection Vulnerability
First published (updated )
redhat/phpPHP function password_verify can erroneously return true when argument contains NUL
6.5
First published (updated )
redhat/php__Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix
6.5
First published (updated )
PHPFilter bypass in filter_var (FILTER_VALIDATE_URL)
5.3
EPSS
0.08%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Php-fpm Php-fpmPHP-FPM logs from children may be altered
3.3
EPSS
0.04%
First published (updated )
Php-fpm Php-fpmErroneous parsing of multipart form data
5.3
EPSS
0.05%
First published (updated )
Php-fpm Php-fpmcgi.force_redirect configuration is bypassable due to the environment variable collision
7.5
EPSS
0.08%
First published (updated )
PHPpassword_verify() always returns true for some invalid hashes
8.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ubuntu/php8.1Missing error check and insufficient random bytes in HTTP Digest authentication for SOAP
4.3
First published (updated )
PHPBuffer overflow and overread in phar_dir_read()
9.8
First published (updated )
PHPSecurity issue with external entity loading in XML without enabling it
8.6
First published (updated )
PHPConfiguring a proxy in a stream context might allow for CRLF injection in URIs
7.2
First published (updated )
PHPInteger overflow in the firebird and dblib quoters causing OOB writes
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPSingle byte overread with convert.quoted-printable-decode filter
8.2
First published (updated )
PHPCommand injection via array-ish $command parameter of proc_open() (bypass CVE-2024-1874 fix)
8.8
EPSS
0.44%
First published (updated )
PHPDoS vulnerability when parsing multipart request body
7.5
First published (updated )
PHP$_COOKIE names string replacement (. -> _): cookie integrity vulnerabilities
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPOOB read due to insufficient input validation in imageloadfont()
7.1
First published (updated )
PHPphar wrapper can occur dos when using quine gzip file
5.5
First published (updated )
PHPSpecial characters break path parsing in XML functions
5.3
First published (updated )
Ubuntu LinuxPHP parses encoded cookie names so malicious `__Host-` cookies can be sent
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.