Lucene search
K

5 matches found

Circl
Circl
added 2023/12/22 10:22 p.m.5 views

CVE-2023-51651

creationtimestamp| type| source ---|---|--- 2023-12-22 22:22:16+00:00| seen| https://t.me/ctinow/158641...

6CVSS4.7AI score0.00376EPSS
Exploits0References1
NVD
NVD
added 2023/12/22 9:15 p.m.41 views

CVE-2023-51651

AWS SDK for PHP is the Amazon Web Services software development kit for PHP. Within the scope of requests to S3 object keys and/or prefixes containing a Unix double-dot, a URI path traversal is possible. The issue exists in the buildEndpoint method in the RestSerializer component of the AWS SDK f...

6CVSS0.00376EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2023/12/22 9:15 p.m.7 views

CVE-2023-51651

AWS SDK for PHP is the Amazon Web Services software development kit for PHP. Within the scope of requests to S3 object keys and/or prefixes containing a Unix double-dot, a URI path traversal is possible. The issue exists in the buildEndpoint method in the RestSerializer component of the AWS SDK f...

6CVSS6AI score0.00376EPSS
Exploits0References3
CVE
CVE
added 2023/12/22 9:3 p.m.74 views

CVE-2023-51651

The CVE-2023-51651 issue affects AWS SDK for PHP (v3) prior to 3.288.1. The vulnerability resides in the RestSerializer’s buildEndpoint, which relies on Guzzle Psr7 UriResolver that strips dot segments per RFC 3986. Under certain conditions, this can lead to a path traversal in S3 object key pref...

6CVSS4.9AI score0.00376EPSS
Exploits0References3Affected Software1
Friends Of PHP
Friends Of PHP
added 2023/11/22 12:0 a.m.35 views

Potential URI resolution path traversal in the AWS SDK for PHP

More info at https://nvd.nist.gov/vuln/detail/CVE-2023-51651...

6CVSS7.2AI score0.00376EPSS
Exploits0Affected Software1
Rows per page
Query Builder