Lucene search
K

197 matches found

NVD
NVD
added 2026/01/27 10:15 p.m.6 views

CVE-2026-24765

PHPUnit is a testing framework for PHP. A vulnerability has been discovered in versions prior to 12.5.8, 11.5.50, 10.5.62, 9.6.33, and 8.5.52 involving unsafe deserialization of code coverage data in PHPT test execution. The vulnerability exists in the cleanupForCoverage method, which deserialize...

7.8CVSS0.00343EPSS
Exploits0References8
OSV
OSV
added 2026/01/27 10:15 p.m.4 views

DEBIAN-CVE-2026-24765

PHPUnit is a testing framework for PHP. A vulnerability has been discovered in versions prior to 12.5.8, 11.5.50, 10.5.62, 9.6.33, and 8.5.52 involving unsafe deserialization of code coverage data in PHPT test execution. The vulnerability exists in the cleanupForCoverage method, which deserialize...

7.8CVSS6.9AI score0.00343EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/01/27 10:15 p.m.6 views

CVE-2026-24765

PHPUnit is a testing framework for PHP. A vulnerability has been discovered in versions prior to 12.5.8, 11.5.50, 10.5.62, 9.6.33, and 8.5.52 involving unsafe deserialization of code coverage data in PHPT test execution. The vulnerability exists in the cleanupForCoverage method, which deserialize...

7.8CVSS6.3AI score0.00343EPSS
Exploits0References8
OSV
OSV
added 2026/01/27 10:15 p.m.4 views

UBUNTU-CVE-2026-24765

PHPUnit is a testing framework for PHP. A vulnerability has been discovered in versions prior to 12.5.8, 11.5.50, 10.5.62, 9.6.33, and 8.5.52 involving unsafe deserialization of code coverage data in PHPT test execution. The vulnerability exists in the cleanupForCoverage method, which deserialize...

7.8CVSS6.5AI score0.00343EPSS
Exploits0References9
EUVD
EUVD
added 2026/01/27 9:35 p.m.6 views

EUVD-2026-4725

PHPUnit is a testing framework for PHP. A vulnerability has been discovered in versions prior to 12.5.8, 11.5.50, 10.5.62, 9.6.33, and 8.5.52 involving unsafe deserialization of code coverage data in PHPT test execution. The vulnerability exists in the cleanupForCoverage method, which deserialize...

7.8CVSS6.4AI score0.00343EPSS
Exploits0References7
AlpineLinux
AlpineLinux
added 2026/01/27 9:35 p.m.5 views

CVE-2026-24765

PHPUnit is a testing framework for PHP. A vulnerability has been discovered in versions prior to 12.5.8, 11.5.50, 10.5.62, 9.6.33, and 8.5.52 involving unsafe deserialization of code coverage data in PHPT test execution. The vulnerability exists in the cleanupForCoverage method, which deserialize...

7.8CVSS6.6AI score0.00343EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2026/01/27 9:35 p.m.4 views

CVE-2026-24765 PHPUnit Vulnerable to Unsafe Deserialization in PHPT Code Coverage Handling

PHPUnit is a testing framework for PHP. A vulnerability has been discovered in versions prior to 12.5.8, 11.5.50, 10.5.62, 9.6.33, and 8.5.52 involving unsafe deserialization of code coverage data in PHPT test execution. The vulnerability exists in the cleanupForCoverage method, which deserialize...

7.8CVSS6.4AI score0.00343EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/01/27 9:35 p.m.5 views

CVE-2026-24765

PHPUnit is a testing framework for PHP. A vulnerability has been discovered in versions prior to 12.5.8, 11.5.50, 10.5.62, 9.6.33, and 8.5.52 involving unsafe deserialization of code coverage data in PHPT test execution. The vulnerability exists in the cleanupForCoverage method, which deserialize...

7.8CVSS6.4AI score0.00343EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2026/01/27 9:35 p.m.19 views

CVE-2026-24765 PHPUnit Vulnerable to Unsafe Deserialization in PHPT Code Coverage Handling

PHPUnit is a testing framework for PHP. A vulnerability has been discovered in versions prior to 12.5.8, 11.5.50, 10.5.62, 9.6.33, and 8.5.52 involving unsafe deserialization of code coverage data in PHPT test execution. The vulnerability exists in the cleanupForCoverage method, which deserialize...

7.8CVSS0.00343EPSS
Exploits0References7
CVE
CVE
added 2026/01/27 9:35 p.m.54 views

CVE-2026-24765

CVE-2026-24765 affects PHPUnit; the vulnerability stems from unsafe deserialization of code coverage data during PHPT test execution. In older releases (pre-12.5.8, 11.5.50, 10.5.62, 9.6.33, 8.5.52), PHPUnit deserializes .coverage files without validating allowed classes in cleanupForCoverage(), ...

7.8CVSS6.4AI score0.00343EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2026/01/27 9:35 p.m.5 views

CVE-2026-24765

PHPUnit is a testing framework for PHP. A vulnerability has been discovered in versions prior to 12.5.8, 11.5.50, 10.5.62, 9.6.33, and 8.5.52 involving unsafe deserialization of code coverage data in PHPT test execution. The vulnerability exists in the cleanupForCoverage method, which deserialize...

7.8CVSS6.8AI score0.00343EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.6 views

PT-2026-5026

Name of the Vulnerable Software and Affected Versions PHPUnit versions prior to 12.5.8 PHPUnit versions prior to 11.5.50 PHPUnit versions prior to 10.5.62 PHPUnit versions prior to 9.6.33 PHPUnit versions prior to 8.5.52 Description PHPUnit, a testing framework for PHP, contains a flaw related to...

7.8CVSS6.7AI score0.00343EPSS
Exploits0References32
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2013-4594

Malware in sbrugna...

4.3CVSS6.4AI score0.01395EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-5180

Malicious code in bioql PyPI...

8.1CVSS8AI score0.03901EPSS
Exploits0References7
GithubExploit
GithubExploit
added 2025/08/30 12:59 p.m.355 views

Exploit for Code Injection in Phpunit_Project Phpunit

🛡️ PHPUnit Go Scanner CVE-2017-9841 A fast, multithreaded s...

9.8CVSS10AI score0.99999EPSS
Exploits19
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.4 views

Malicious code in phpunit (npm)

The package phpunit was found to contain malicious code. --- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.3 views

MAL-2025-29197 Malicious code in phpunit (npm)

The package phpunit was found to contain malicious code. --- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 8:25 a.m.3 views

CVE-2024-6565

The AForms — Form Builder for Price Calculator & Cost Estimation plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 2.2.6. This is due to the plugin utilizing the aura library and allowing direct access to the phpunit test files. This makes it possibl...

5.3CVSS5.9AI score0.00443EPSS
Exploits0References1
OSV
OSV
added 2025/03/24 7:31 a.m.8 views

CVE-2025-2690 yiisoft Yii2 MockClass.php generate deserialization

A vulnerability, which was classified as critical, was found in yiisoft Yii2 up to 2.0.39. This affects the function Generate of the file phpunit\src\Framework\MockObject\MockClass.php. The manipulation leads to deserialization. It is possible to initiate the attack remotely. The exploit has been...

5.3CVSS6AI score0.00599EPSS
Exploits1References6
CVE
CVE
added 2025/03/24 7:31 a.m.73 views

CVE-2025-2690

CVE-2025-2690 affects yiisoft/yii2 up to 2.0.39. The issue is in Generate() of phpunit\src\Framework\MockObject\MockClass.php and enables deserialization, with remote attack potential. Public exploit details exist; multiple sources (NVD, Red Hat, osv) corroborate a critical severity, though CVSS ...

9.8CVSS7.1AI score0.00599EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder