According to its self-reported version number, the version of PHP installed on the remote host is 7.4.x prior to 7.4.30, 8.0.x prior to 8.0.20, or 8.1.x prior to 8.1.7. It is, therefore, affected by multiple vulnerabilities:

Uninitialized array in pg_query_params(). (CVE-2022-31625)
mysqlnd/pdo password buffer overflow. (CVE-2022-31626)

Note that the scanner has not tested for these issues but has instead relied only on the application’s self-reported version number.

No source data

VendorProductVersionCPE
phpphp*cpe:2.3:a:php:php:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
php	php	*	cpe:2.3:a:php:php::::::::

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31625

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31626

www.php.net/ChangeLog-7.php#7.4.30

altlinux 4

debian 2

fedora 2

osv 20

nessus 54

suse 4

openvas 27

slackware 1

ubuntu 3

f5 1

mageia 1

redhat 8

oraclelinux 6

debiancve 2

cbl_mariner 2

almalinux 5

rocky 6

alpinelinux 2

thn 1

githubexploit 1

redhatcve 2

prion 2

cve 2

veracode 2

ubuntucve 2

cloudlinux 1

gentoo 1

redos 1

amazon 1

oracle 1

altlinux

Security fix for the ALT Linux 10 package php8.1 version 8.1.7-alt1

2022-06-22 00:00:00

Security fix for the ALT Linux 10 package php7 version 7.4.30-alt1

2022-06-22 00:00:00

Security fix for the ALT Linux 10 package php8.2 version 8.1.7-alt1

2022-06-16 00:00:00

debian

[SECURITY] [DSA 5179-1] php7.4 security update

2022-07-08 19:27:23

[SECURITY] [DLA 3243-1] php7.3 security update

2022-12-15 18:33:17

fedora

[SECURITY] Fedora 35 Update: php-8.0.20-1.fc35

2022-06-17 01:19:38

[SECURITY] Fedora 36 Update: php-8.1.7-1.fc36

2022-06-17 01:14:59

osv

php7.2 regression

2022-07-07 21:53:43

php7.4 - security update

2022-07-08 00:00:00

php7.0 vulnerabilities

2022-07-04 14:10:08

nessus

SUSE SLES15 Security Update : php7 (SUSE-SU-2022:2275-1)

2022-07-07 00:00:00

Debian DSA-5179-1 : php7.4 - security update

2022-07-11 00:00:00

SUSE SLES12 Security Update : php74 (SUSE-SU-2022:2161-1)

2022-06-24 00:00:00

suse

Security update for php7 (important)

2022-06-24 00:00:00

Security update for php7 (important)

2022-07-05 00:00:00

Security update for php8 (important)

2022-07-06 00:00:00

openvas

SUSE: Security Advisory (SUSE-SU-2022:2275-1)

2022-07-06 00:00:00

Ubuntu: Security Advisory (USN-5479-2)

2022-08-26 00:00:00

Debian: Security Advisory (DSA-5179-1)

2022-07-12 00:00:00

slackware

[slackware-security] php

2022-06-13 21:14:24

ubuntu

PHP vulnerabilities

2022-06-15 00:00:00

PHP vulnerabilities

2022-07-04 00:00:00

PHP regression

2022-07-07 00:00:00

K19150034 : PHP vulnerabilities CVE-2022-31625, CVE-2022-31626

2022-07-12 00:00:00

mageia

Updated php packages fix security vulnerability

2022-06-19 00:30:41

redhat

(RHSA-2022:5491) Important: rh-php73-php security and bug fix update

2022-07-04 07:07:16

(RHSA-2022:6158) Moderate: php:7.4 security update

2022-08-24 15:03:01

(RHSA-2022:5467) Important: php:7.4 security update

2022-06-30 21:27:47

oraclelinux

php:8.0 security update

2022-07-04 00:00:00

php security update

2022-08-04 00:00:00

php:7.4 security update

2022-07-04 00:00:00

debiancve

CVE-2022-31626

2022-06-16 06:15:00

CVE-2022-31625

2022-06-16 06:15:00

cbl_mariner

CVE-2022-31625 affecting package php 7.4.14-3

2024-04-24 09:09:23

CVE-2022-31626 affecting package php 7.4.14-3

2024-04-24 09:09:23

almalinux

Moderate: php:7.4 security update

2022-08-24 00:00:00

ALSA-2022:5468: php:8.0 security update (Important)

2022-06-30 00:00:00

Important: php security update

2022-08-04 00:00:00

rocky

php:7.4 security update

2022-08-24 15:03:01

php security update

2022-08-04 09:53:47

php:8.0 security update

2022-06-30 21:27:49

alpinelinux

CVE-2022-31625

2022-06-16 06:15:00

CVE-2022-31626

2022-06-16 06:15:00

thn

Resolving Availability vs. Security, a Constant Conflict in IT

2022-08-05 10:20:00

githubexploit

Exploit for Classic Buffer Overflow in Php

2022-12-06 16:19:03

redhatcve

CVE-2022-31626

2022-06-20 05:01:27

CVE-2022-31625

2022-06-20 05:01:17

prion

Remote code execution

2022-06-16 06:15:00

Denial of service

2022-06-16 06:15:00

cve

CVE-2022-31626

2022-06-16 06:15:00

CVE-2022-31625

2022-06-16 06:15:00

veracode

Buffer Overflow

2022-06-13 02:07:10

Remote Code Execution (RCE)

2022-06-13 01:57:35

ubuntucve

CVE-2022-31626

2022-06-13 00:00:00

CVE-2022-31625

2022-06-13 00:00:00

cloudlinux

Fixed CVE-2022-31625 in php

2022-07-18 19:05:49

gentoo

PHP: Multiple Vulnerabilities

2022-09-29 00:00:00

redos

ROS-20220826-01

2022-08-26 00:00:00

amazon

Important: php

2023-11-29 22:20:00

oracle

Oracle Critical Patch Update Advisory - January 2023

2023-01-17 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

JSON

Related for WEB_APPLICATION_SCANNING_113253