VYPR

PHP

by PHP

Source repositories

CVEs (730)

  • CVE-2015-8879HigMay 22, 2016
    risk 0.49cvss 7.5epss 0.03

    The odbc_bindcols function in ext/odbc/php_odbc.c in PHP before 5.6.12 mishandles driver behavior for SQL_WVARCHAR columns, which allows remote attackers to cause a denial of service (application crash) in opportunistic circumstances by leveraging use of the odbc_fetch_array…

  • CVE-2015-8867HigMay 22, 2016
    risk 0.49cvss 7.5epss 0.04

    The openssl_random_pseudo_bytes function in ext/openssl/openssl.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 incorrectly relies on the deprecated RAND_pseudo_bytes function, which makes it easier for remote attackers to defeat cryptographic protection…

  • CVE-2016-4070HigMay 20, 2016
    risk 0.49cvss 7.5epss 0.06

    Integer overflow in the php_raw_url_encode function in ext/standard/url.c in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5 allows remote attackers to cause a denial of service (application crash) via a long string to the rawurlencode function. NOTE: the vendor…

  • CVE-2015-8874HigMay 16, 2016
    risk 0.49cvss 7.5epss 0.08

    Stack consumption vulnerability in GD in PHP before 5.6.12 allows remote attackers to cause a denial of service via a crafted imagefilltoborder call.

  • CVE-2015-8873HigMay 16, 2016
    risk 0.49cvss 7.5epss 0.04

    Stack consumption vulnerability in Zend/zend_exceptions.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allows remote attackers to cause a denial of service (segmentation fault) via recursive method calls.

  • CVE-2015-6838HigMay 16, 2016
    risk 0.49cvss 7.5epss 0.07

    The xsl_ext_function_php function in ext/xsl/xsltprocessor.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13, when libxml2 before 2.9.2 is used, does not consider the possibility of a NULL valuePop return value before proceeding with a free operation after the…

  • CVE-2015-6837HigMay 16, 2016
    risk 0.49cvss 7.5epss 0.07

    The xsl_ext_function_php function in ext/xsl/xsltprocessor.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13, when libxml2 before 2.9.2 is used, does not consider the possibility of a NULL valuePop return value before proceeding with a free operation during…

  • CVE-2015-4644HigMay 16, 2016
    risk 0.49cvss 7.5epss 0.06

    The php_pgsql_meta_data function in pgsql.c in the PostgreSQL (aka pgsql) extension in PHP before 5.4.42, 5.5.x before 5.5.26, and 5.6.x before 5.6.10 does not validate token extraction for table names, which might allow remote attackers to cause a denial of service (NULL…

  • CVE-2015-4605HigMay 16, 2016
    risk 0.49cvss 7.5epss 0.07

    The mcopy function in softmagic.c in file 5.x, as used in the Fileinfo component in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8, does not properly restrict a certain offset value, which allows remote attackers to cause a denial of service (application crash)…

  • CVE-2015-4604HigMay 16, 2016
    risk 0.49cvss 7.5epss 0.07

    The mget function in softmagic.c in file 5.x, as used in the Fileinfo component in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8, does not properly maintain a certain pointer relationship, which allows remote attackers to cause a denial of service (application…

  • CVE-2014-0236HigMay 16, 2016
    risk 0.49cvss 7.5epss 0.03

    file before 5.18, as used in the Fileinfo component in PHP before 5.6.0, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a zero root_storage value in a CDF file, related to cdf.c and readcdf.c.

  • CVE-2015-6833HigJan 19, 2016
    risk 0.49cvss 7.5epss 0.05

    Directory traversal vulnerability in the PharData class in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allows remote attackers to write to arbitrary files via a .. (dot dot) in a ZIP archive entry that is mishandled during an extractTo call.

  • CVE-2015-8393HigDec 2, 2015
    risk 0.49cvss 7.5epss 0.04

    pcregrep in PCRE before 8.38 mishandles the -q option for binary files, which might allow remote attackers to obtain sensitive information via a crafted file, as demonstrated by a CGI script that sends stdout data to a client.

  • CVE-2020-7065HigApr 1, 2020
    risk 0.48cvss 7.4epss 0.05

    In PHP versions 7.3.x below 7.3.16 and 7.4.x below 7.4.4, while using mb_strtolower() function with UTF-32LE encoding, certain invalid strings could cause PHP to overwrite stack-allocated buffer. This could lead to memory corruption, crashes and potentially code execution.

  • CVE-2017-7272HigMar 27, 2017
    risk 0.48cvss 7.4epss 0.04

    PHP through 7.1.11 enables potential SSRF in applications that accept an fsockopen or pfsockopen hostname argument with an expectation that the port number is constrained. Because a :port syntax is recognized, fsockopen will use the port number that is specified in the hostname…

  • CVE-2015-6836HigJan 19, 2016
    risk 0.48cvss 7.3epss 0.10

    The SoapClient __call method in ext/soap/soap.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13 does not properly manage headers, which allows remote attackers to execute arbitrary code via crafted serialized data that triggers a "type confusion" in the…

  • CVE-2015-6832HigJan 19, 2016
    risk 0.48cvss 7.3epss 0.05

    Use-after-free vulnerability in the SPL unserialize implementation in ext/spl/spl_array.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allows remote attackers to execute arbitrary code via crafted serialized data that triggers misuse of an array field.

  • CVE-2015-6831HigJan 19, 2016
    risk 0.48cvss 7.3epss 0.07

    Multiple use-after-free vulnerabilities in SPL in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allow remote attackers to execute arbitrary code via vectors involving (1) ArrayObject, (2) SplObjectStorage, and (3) SplDoublyLinkedList, which are mishandled…

  • CVE-2015-6527HigJan 19, 2016
    risk 0.48cvss 7.3epss 0.04

    The php_str_replace_in_subject function in ext/standard/string.c in PHP 7.x before 7.0.0 allows remote attackers to execute arbitrary code via a crafted value in the third argument to the str_ireplace function.

  • CVE-2015-5590HigJan 19, 2016
    risk 0.48cvss 7.3epss 0.05

    Stack-based buffer overflow in the phar_fix_filepath function in ext/phar/phar.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a large length value, as…

Page 10 of 37