Lucene search
K

47 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 8 : php:7.4 (AXSA:2024-9405:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-9405:01 advisory. php: 1-byte array overrun in common path resolve code CVE-2023-0568 php: Passwordverify always return true with some hash CVE-2023-0567 php: Missing...

9.8CVSS8AI score0.49336EPSS
Exploits13References12
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : php:8.0 (AXSA:2023-6531:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6531:01 advisory. php: XML loading external entity without being enabled CVE-2023-3823 php: phar Buffer mismanagement CVE-2023-3824 php: 1-byte array overrun in commo...

9.8CVSS8.7AI score0.08003EPSS
Exploits6References7
CBLMariner
CBLMariner
added 2025/07/10 3:8 p.m.5 views

CVE-2023-3824 affecting package php for versions less than 8.2.8-1

CVE-2023-3824 affecting package php for versions less than 8.2.8-1. A patched version of the package is available...

9.8CVSS7.3AI score0.08003EPSS
Exploits3
Amazon
Amazon
added 2025/04/16 12:0 a.m.5 views

Important: php

Issue Overview: An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A heap out-of-bounds write or read occurs in nextstateval during regular expression compilation. Octal numbers larger than 0xff are not handled correctly i...

9.8CVSS8.9AI score0.08003EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2024/12/19 12:0 a.m.22 views

AlmaLinux 8 : php:7.4 (ALSA-2024:10952)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:10952 advisory. php: 1-byte array overrun in common path resolve code CVE-2023-0568 php: Passwordverify always return true with some hash CVE-2023-0567 php: Missing erro...

9.8CVSS7.8AI score0.49336EPSS
Exploits13References13
OSV
OSV
added 2024/12/16 4:54 p.m.10 views

CLSA-2024-1734368090 php: Fix of CVE-2023-3824

CVE-2023-3824: Update length checking in PHAR directory entries reading to prevent stack buffer overflow and potential memory corruption or RCE...

9.8CVSS7.2AI score0.08003EPSS
Exploits3References1
Tenable Nessus
Tenable Nessus
added 2024/12/13 12:0 a.m.23 views

Oracle Linux 8 : php:7.4 (ELSA-2024-10952)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10952 advisory. - Fix cgi.forceredirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered...

9.8CVSS7.7AI score0.49336EPSS
Exploits13References12
Tenable Nessus
Tenable Nessus
added 2024/12/11 12:0 a.m.20 views

RHEL 8 : php:7.4 (RHSA-2024:10952)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:10952 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: 1-byte array overrun in common...

9.8CVSS7.9AI score0.49336EPSS
Exploits13References26
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.26 views

Ubuntu 16.04 LTS / 18.04 LTS : PHP regression (USN-6305-3)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6305-3 advisory. USN-6305-2 fixed a vulnerability in PHP. The update caused a regression in Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. This update fix it. Tenable has...

5.6AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.34 views

RHEL 8 : php (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - php: Out of bounds access in phppcre.c:phppcrereplaceimpl CVE-2017-9118 - php: 1-byte array overrun in...

8.1CVSS8AI score0.05719EPSS
Exploits6References7
Debian
Debian
added 2024/04/15 7:25 p.m.62 views

[SECURITY] [DSA 5660-1] php7.4 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5660-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 15, 2024 https://www.debian.org/security/faq -...

9.8CVSS9.4AI score0.3786EPSS
Exploits5
GithubExploit
GithubExploit
added 2024/03/18 10:45 a.m.111 views

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Php

PHP Malicious Phar File PoC CVE-2023-3824 Description T...

9.8CVSS7.8AI score0.08003EPSS
Exploits3
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.25 views

openSUSE: Security Advisory for php7 (SUSE-SU-2023:3541-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9AI score0.08003EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.14 views

openSUSE: Security Advisory for php7 (SUSE-SU-2023:3528-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9AI score0.08003EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.22 views

openSUSE: Security Advisory for php7 (SUSE-SU-2023:3498-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9AI score0.08003EPSS
Exploits4References2
Ubuntu
Ubuntu
added 2024/02/27 10:17 a.m.72 views

USN-6305-2: PHP vulnerabilities

USN-6305-1 fixed several vulnerabilities in PHP. This update provides the corresponding update for Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS. Original advisory details: It was discovered that PHP incorrectly handled certain XML files. An attacker could possibly use this issue to...

9.8CVSS7.9AI score0.08003EPSS
Exploits4References1
The Hacker News
The Hacker News
added 2024/02/20 5:25 a.m.49 views

LockBit Ransomware's Darknet Domains Seized in Global Law Enforcement Raid

Update: The U.K. National Crime Agency NCA has confirmed the takedown of LockBit infrastructure. Read here for more details. An international law enforcement operation has led to the seizure of multiple darknet domains operated by LockBit, one of the most prolific ransomware groups, marking the...

9.8CVSS9.8AI score0.08003EPSS
Exploits3
OSV
OSV
added 2024/02/12 8:17 p.m.30 views

RLSA-2024:0387 Moderate: php:8.1 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: 1-byte array overrun in common path resolve code CVE-2023-0568 php: DoS vulnerability when parsing multipart request body CVE-2023-0662 php: Missing error check and insufficient random bytes...

7.5CVSS7.9AI score0.08003EPSS
Exploits6References7
RedHat Linux
RedHat Linux
added 2024/01/24 9:59 a.m.63 views

Moderate: Red Hat Security Advisory: php:8.1 security update

An update for the php:8.1 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.1AI score0.08003EPSS
Exploits6References7
OSV
OSV
added 2024/01/24 12:0 a.m.44 views

ALSA-2024:0387 Moderate: php:8.1 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: 1-byte array overrun in common path resolve code CVE-2023-0568 php: DoS vulnerability when parsing multipart request body CVE-2023-0662 php: Missing error check and insufficient random bytes...

9.8CVSS7.9AI score0.08003EPSS
Exploits6References14
Rows per page
Query Builder