VYPR

PHAR

by PHP

CVEs (1)

  • CVE-2022-31628LowSep 28, 2022
    risk 0.15cvss 2.3epss 0.01

    In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress "quines" gzip files, resulting in an infinite loop.