31200 matches found
CVE-2026-7261
In PHP versions 8.2. before 8.2.31, 8.3. before 8.3.31, 8.4. before 8.4.21, and 8.5. before 8.5.6, when SoapServer is configured with SOAPPERSISTENCESESSION, the handler object is persisted across requests via session storage. However, in the case SOAP requests results in an error, the persistanc...
CVE-2026-7261 SoapServer session-persisted object use-after-free via SOAP header fault
In PHP versions 8.2. before 8.2.31, 8.3. before 8.3.31, 8.4. before 8.4.21, and 8.5. before 8.5.6, when SoapServer is configured with SOAPPERSISTENCESESSION, the handler object is persisted across requests via session storage. However, in the case SOAP requests results in an error, the persistanc...
CVE-2026-7261
In PHP versions 8.2. before 8.2.31, 8.3. before 8.3.31, 8.4. before 8.4.21, and 8.5. before 8.5.6, when SoapServer is configured with SOAPPERSISTENCESESSION, the handler object is persisted across requests via session storage. However, in the case SOAP requests results in an error, the persistanc...
CVE-2026-7261 SoapServer session-persisted object use-after-free via SOAP header fault
In PHP versions 8.2. before 8.2.31, 8.3. before 8.3.31, 8.4. before 8.4.21, and 8.5. before 8.5.6, when SoapServer is configured with SOAPPERSISTENCESESSION, the handler object is persisted across requests via session storage. However, in the case SOAP requests results in an error, the persistanc...
Dotouch XproUPF 安全漏洞
Dotouch XproUPF is an intelligent conference tablet device from the Dotouch company, featuring integrated touch display and multimedia interaction capabilities. The Dotouch XproUPF 2.0.0-release-088aa7c4 version contains a security vulnerability. This vulnerability stems from a denial-of-service...
PHP 缓冲区错误漏洞
PHP is an open-source scripting language executed on the server side. Versions of PHP prior to 8.2.31, 8.3.31, 8.4.21, and 8.5.6 contained a buffer error vulnerability. This vulnerability stemmed from the use of the metaphone function, which used signed integer variables to track the current...
OESA-2026-2224 perl-Image-ExifTool security update
ExifTool is a Perl module with an included command-line application for reading and writing meta information in image, audio, and video files. It reads EXIF, GPS, IPTC, XMP, JFIF, MakerNotes, GeoTIFF, ICC Profile, Photoshop IRB, FlashPix, AFCP, and ID3 meta information from JPG, JP2, TIFF, GIF,...
OESA-2026-2222 perl-Image-ExifTool security update
ExifTool is a Perl module with an included command-line application for reading and writing meta information in image, audio, and video files. It reads EXIF, GPS, IPTC, XMP, JFIF, MakerNotes, GeoTIFF, ICC Profile, Photoshop IRB, FlashPix, AFCP, and ID3 meta information from JPG, JP2, TIFF, GIF,...
SUSE CVE-2026-41570
PHPUnit is a testing framework for PHP. In versions 12.5.21 and 13.1.5, PHPUnit forwards PHP INI settings to child processes used for isolated/PHPT test execution as -d name=value command-line arguments without neutralizing INI metacharacters. Because PHP's INI parser interprets " as a string...
CVE-2024-33724
SOPlanning 1.52.00 is vulnerable to Cross Site Scripting XSS via the groupeid parameter to process/groupesave.php...
GHSA-3V2C-X6Q9-F697 vulnerabilities
Vulnerabilities for packages: buildah-fips, azcopy-fips, crossplane-provider-aws-backup, kubernetes-event-exporter-fips, json-exporter-fips, prometheus-operator, splunk-otel-collector, crossplane-provider-azure-solutions, terraform-provider-pagerduty-fips, google-osconfig-agent,...
GHSA-2283-WF8C-RW8R vulnerabilities
Vulnerabilities for packages: buildah-fips, azcopy-fips, crossplane-provider-aws-backup, k8ssandra-client, json-exporter-fips, kubernetes-event-exporter-fips, prometheus-operator, splunk-otel-collector, crossplane-provider-azure-solutions, terraform-provider-pagerduty-fips, google-osconfig-agent,...
CVE-2026-39826 vulnerabilities
Vulnerabilities for packages: buildah-fips, azcopy-fips, crossplane-provider-aws-backup, kubernetes-event-exporter-fips, json-exporter-fips, prometheus-operator, splunk-otel-collector, crossplane-provider-azure-solutions, terraform-provider-pagerduty-fips, google-osconfig-agent,...
CVE-2026-39823 vulnerabilities
Vulnerabilities for packages: buildah-fips, azcopy-fips, crossplane-provider-aws-backup, k8ssandra-client, json-exporter-fips, kubernetes-event-exporter-fips, prometheus-operator, splunk-otel-collector, crossplane-provider-azure-solutions, terraform-provider-pagerduty-fips, google-osconfig-agent,...
GHSA-8G2R-HHVJ-MV99 vulnerabilities
Vulnerabilities for packages: buildah-fips, azcopy-fips, crossplane-provider-aws-backup, k8ssandra-client, json-exporter-fips, kubernetes-event-exporter-fips, mig-parted, prometheus-operator, secretgen-controller-fips, moby-ryuk-fips, splunk-otel-collector, crossplane-provider-azure-solutions,...
GHSA-QC64-M6C2-V4X7 vulnerabilities
Vulnerabilities for packages: buildah-fips, azcopy-fips, crossplane-provider-aws-backup, k8ssandra-client, json-exporter-fips, kubernetes-event-exporter-fips, mig-parted, prometheus-operator, secretgen-controller-fips, moby-ryuk-fips, splunk-otel-collector, crossplane-provider-azure-solutions,...
CVE-2026-39817 vulnerabilities
Vulnerabilities for packages: buildah-fips, azcopy-fips, crossplane-provider-aws-backup, k8ssandra-client, json-exporter-fips, kubernetes-event-exporter-fips, mig-parted, prometheus-operator, secretgen-controller-fips, moby-ryuk-fips, splunk-otel-collector, crossplane-provider-azure-solutions,...
GHSA-5M4P-2GJX-P2G8 vulnerabilities
Vulnerabilities for packages: buildah-fips, azcopy-fips, crossplane-provider-aws-backup, k8ssandra-client, json-exporter-fips, kubernetes-event-exporter-fips, mig-parted, prometheus-operator, secretgen-controller-fips, moby-ryuk-fips, splunk-otel-collector, crossplane-provider-azure-solutions,...
CVE-2026-39836 vulnerabilities
Vulnerabilities for packages: buildah-fips, azcopy-fips, crossplane-provider-aws-backup, k8ssandra-client, json-exporter-fips, kubernetes-event-exporter-fips, mig-parted, prometheus-operator, secretgen-controller-fips, moby-ryuk-fips, splunk-otel-collector, crossplane-provider-azure-solutions,...
CVE-2026-39819 vulnerabilities
Vulnerabilities for packages: buildah-fips, azcopy-fips, crossplane-provider-aws-backup, k8ssandra-client, json-exporter-fips, kubernetes-event-exporter-fips, mig-parted, prometheus-operator, secretgen-controller-fips, moby-ryuk-fips, splunk-otel-collector, crossplane-provider-azure-solutions,...