Filter
Software
php php
723
php pear
5
php archive tar
4
php-fpm php-fpm
4
php pearweb
2
php php script index
2
php animated smiley generator
1
php ar memberscript
1
php blog cms
1
php bloq
1
php com extensions
1
php directory listing script
1
php errordocs
1
php ext-http
1
php f1 maxs file uploader
1
php fastcgi process manager (fpm)
1
php group php
1
php imagick
1
php memcached
1
php mysql banner exchange
1
php mysql extension
1
php pear archive tar
1
php pecl http
1
php php fi
1
php phpsquidpass
1
php xhprof
1
PHP PHPPHP-CGI OS Command Injection Vulnerability
First published (updated )
redhat/phpPHP function password_verify can erroneously return true when argument contains NUL
6.5
First published (updated )
redhat/php__Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix
6.5
First published (updated )
PHP PHPFilter bypass in filter_var (FILTER_VALIDATE_URL)
5.3
EPSS
0.08%
First published (updated )
Php-fpm Php-fpmPHP-FPM logs from children may be altered
3.3
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Php-fpm Php-fpmErroneous parsing of multipart form data
5.3
EPSS
0.05%
First published (updated )
Php-fpm Php-fpmcgi.force_redirect configuration is bypassable due to the environment variable collision
7.5
EPSS
0.08%
First published (updated )
PHP PHPpassword_verify() always returns true for some invalid hashes
8.1
First published (updated )
PHP PHPMissing error check and insufficient random bytes in HTTP Digest authentication for SOAP
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPBuffer overflow and overread in phar_dir_read()
9.8
First published (updated )
PHP PHPSecurity issue with external entity loading in XML without enabling it
8.6
First published (updated )
PHP PHPConfiguring a proxy in a stream context might allow for CRLF injection in URIs
7.2
First published (updated )
PHP PHPInteger overflow in the firebird and dblib quoters causing OOB writes
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHPSingle byte overread with convert.quoted-printable-decode filter
8.2
First published (updated )
PHP PHPLeak partial content of the heap through heap buffer over-read in mysqlnd
5.8
EPSS
0.04%
First published (updated )
PHP PHPCommand injection via array-ish $command parameter of proc_open() (bypass CVE-2024-1874 fix)
8.8
EPSS
0.44%
First published (updated )
PHP PHPDoS vulnerability when parsing multipart request body
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHP PHP$_COOKIE names string replacement (. -> _): cookie integrity vulnerabilities
6.5
First published (updated )
PHP PHPOOB read due to insufficient input validation in imageloadfont()
7.1
First published (updated )
PHP PHPphar wrapper can occur dos when using quine gzip file
5.5
First published (updated )
PHP PHPSpecial characters break path parsing in XML functions
5.3
First published (updated )
Canonical Ubuntu LinuxPHP parses encoded cookie names so malicious `__Host-` cookies can be sent
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Canonical Ubuntu LinuxUse-of-uninitialized-value in exif
6.5
First published (updated )
Canonical Ubuntu LinuxWrong ciphertext/tag in AES-CCM encryption for a 12 bytes IV
6.5
First published (updated )
PHP PHPget_headers() silently truncates after a null byte
5.3
First published (updated )
Canonical Ubuntu Linuxmb_strtolower (UTF-32LE): stack-buffer-overflow at php_unicode_tolower_full
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.