A vulnerability in the PHP interpreter is related to improper input validation. Exploitation of the vulnerability
could allow an attacker acting remotely to install a standard, unsafe cookie in the victim’s browser.
insecure cookie

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64php< 7.4.33-1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
redos	7.3	x86_64	php	< 7.4.33-1	UNKNOWN

cvelist 2

alpinelinux 2

vulnrichment 2

checkpoint_advisories 1

redhatcve 2

debiancve 2

osv 15

nvd 2

altlinux 3

cve 2

githubexploit 1

veracode 1

cbl_mariner 1

prion 1

ubuntucve 2

nessus 65

openvas 29

fedora 6

suse 2

cloudlinux 1

mageia 2

slackware 2

debian 3

gentoo 1

ubuntu 2

almalinux 4

redhat 4

freebsd 1

oraclelinux 4

rocky 2

ibm 1

hp 1

oracle 1

cvelist

CVE-2022-31629 $_COOKIE names string replacement (. -> _): cookie integrity vulnerabilities

2022-09-28 22:25:10

CVE-2024-2756 __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix

2024-04-29 03:34:16

alpinelinux

CVE-2022-31629

2022-09-28 23:15:10

CVE-2024-2756

2024-04-29 04:15:07

vulnrichment

CVE-2022-31629 $_COOKIE names string replacement (. -> _): cookie integrity vulnerabilities

2022-09-28 22:25:10

CVE-2024-2756 __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix

2024-04-29 03:34:16

checkpoint_advisories

PHP Authentication Bypass (CVE-2022-31629)

2022-11-24 00:00:00

redhatcve

CVE-2022-31629

2022-10-13 14:29:56

CVE-2024-2756

2024-04-15 08:56:16

debiancve

CVE-2022-31629

2022-09-28 23:15:10

CVE-2024-2756

2024-04-29 04:15:07

osv

BIT-php-2022-31629

2024-03-06 11:03:40

CVE-2022-31629

2022-09-28 23:15:10

BIT-php-2024-2756

2024-05-14 07:29:36

nvd

CVE-2022-31629

2022-09-28 23:15:10

CVE-2024-2756

2024-04-29 04:15:07

altlinux

Security fix for the ALT Linux 10 package php8.0 version 8.0.24-alt1

2022-10-13 00:00:00

Security fix for the ALT Linux 10 package php8.2 version 8.1.11-alt1

2022-09-30 00:00:00

Security fix for the ALT Linux 10 package php8.1 version 8.1.11-alt1

2022-10-11 00:00:00

cve

CVE-2022-31629

2022-09-28 23:15:10

CVE-2024-2756

2024-04-29 04:15:07

githubexploit

Exploit for Improper Input Validation in Php

2022-10-07 08:15:23

veracode

Insecure Cookie

2022-09-30 11:10:30

cbl_mariner

CVE-2022-31629 affecting package php 7.4.14-3

2024-09-21 15:26:36

prion

Code injection

2022-09-28 23:15:00

ubuntucve

CVE-2022-31629

2022-09-28 00:00:00

CVE-2024-2756

2024-04-16 00:00:00

nessus

Fedora 36 : php (2022-0b77fbd9e7)

2022-12-23 00:00:00

openSUSE 15 Security Update : php7 (SUSE-SU-2022:3830-1)

2023-01-20 00:00:00

Fedora 35 : php (2022-afdea1c747)

2022-12-21 00:00:00

openvas

PHP < 7.4.31, 8.0.x < 8.0.24, 8.1.x < 8.1.11 Security Update - Linux

2022-09-29 00:00:00

Fedora: Security Advisory for php (FEDORA-2022-afdea1c747)

2022-10-08 00:00:00

PHP < 7.4.31, 8.0.x < 8.0.24, 8.1.x < 8.1.11 Security Update - Windows

2022-09-29 00:00:00

fedora

[SECURITY] Fedora 35 Update: php-8.0.24-1.fc35

2022-10-07 13:13:29

[SECURITY] Fedora 36 Update: php-8.1.11-1.fc36

2022-10-06 15:15:28

[SECURITY] Fedora 39 Update: php-8.2.18-1.fc39

2024-04-19 01:18:35

suse

Security update for php7 (moderate)

2022-11-01 00:00:00

Security update for php8 (important)

2022-10-19 00:00:00

cloudlinux

php: Fix of 2 CVEs

2024-05-09 18:56:08

mageia

Updated php packages fix security vulnerability

2022-10-08 23:22:22

Updated php packages fix security vulnerabilities

2024-04-13 19:56:38

slackware

[slackware-security] php

2022-09-30 18:00:43

[slackware-security] php

2024-04-12 19:36:41

debian

[SECURITY] [DLA 3810-1] php7.3 security update

2024-05-07 23:30:41

[SECURITY] [DSA 5277-1] php7.4 security update

2022-11-13 18:52:43

[SECURITY] [DLA 3243-1] php7.3 security update

2022-12-15 18:33:17

gentoo

PHP: Multiple Vulnerabilities

2022-11-19 00:00:00

ubuntu

PHP vulnerabilities

2022-11-08 00:00:00

PHP vulnerabilities

2023-03-02 00:00:00

almalinux

Moderate: php security update

2023-02-28 00:00:00

Moderate: php:7.4 security update

2023-05-16 00:00:00

Moderate: php:8.1 security update

2023-05-09 00:00:00

redhat

(RHSA-2023:2903) Moderate: php:7.4 security update

2023-05-16 05:57:44

(RHSA-2023:0965) Moderate: php security update

2023-02-28 07:53:30

(RHSA-2023:2417) Moderate: php:8.1 security update

2023-05-09 05:10:10

freebsd

php -- Multiple vulnerabilities

2024-04-11 00:00:00

oraclelinux

8.1 security update

2023-05-15 00:00:00

php security update

2023-02-28 00:00:00

php:8.0 security update

2023-02-22 00:00:00

rocky

php security update

2023-04-06 15:53:36

php:8.0 security update

2023-02-22 01:08:53

ibm

Security Bulletin: Vulnerabilities in PHP may affect IBM Spectrum Sentinel Anomaly Scan Engine (CVE-2021-21703, CVE-2021-21708, CVE-2021-21707, CVE-2022-31629, CVE-2022-31628)

2022-12-16 17:01:05

HP Device Manager Security Updates

2023-04-13 00:00:00

oracle

Oracle Critical Patch Update Advisory - January 2023

2023-01-17 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

AI Score

7.1

Confidence

Low

JSON

Related for ROS-20240730-07