Unrated severityNVD Advisory· Published Dec 31, 2018· Updated May 6, 2025
CVE-2018-6334
CVE-2018-6334
Description
Multipart-file uploads call variables to be improperly registered in the global scope. In cases where variables are not declared explicitly before being used this can lead to unexpected behavior. This affects all supported versions of HHVM prior to the patch (3.25.1, 3.24.5, and 3.21.9 and below).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- github.com/facebook/hhvm/commit/6937de5544c3eead3466b75020d8382080ed0cffmitrex_refsource_MISC
- hhvm.com/blog/2018/03/30/hhvm-3.25.2.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.