48 matches found
CVE-2016-7132
CVE-2016-7132 affects PHP’s WDDX extension: ext/wddx/wddx.c mishandles a crafted wddxPacket XML document in wddx_deserialize, allowing denial of service via NULL pointer dereference and potential other impact. Affected versions are PHP before 5.6.25 and before 7.0.10; fixed in PHP 5.6.25 and PHP ...
CVE-2016-7131
CVE-2016-7131 affects the WDDX extension in PHP (ext/wddx/wddx.c). When a wddx_deserialize call processes a malformed wddxPacket XML document, exemplified by a tag lacking a
CVE-2016-7131
ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service NULL pointer dereference and application crash or possibly have unspecified other impact via a malformed wddxPacket XML document that is mishandled in a wddxdeserialize call, as...
UBUNTU-CVE-2016-7129
The phpwddxprocessdata function in ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service segmentation fault or possibly have unspecified other impact via an invalid ISO 8601 time value, as demonstrated by a wddxdeserialize call that...
CVE-2014-9714
Cross-site scripting XSS vulnerability in the WddxPacket::recursiveAddVar function in HHVM aka the HipHop Virtual Machine before 3.5.0 allows remote attackers to inject arbitrary web script or HTML via a crafted string to the wddxserializevalue function...
Cross site scripting
Cross-site scripting XSS vulnerability in the WddxPacket::recursiveAddVar function in HHVM aka the HipHop Virtual Machine before 3.5.0 allows remote attackers to inject arbitrary web script or HTML via a crafted string to the wddxserializevalue function...
CVE-2014-9714
Cross-site scripting XSS vulnerability in the WddxPacket::recursiveAddVar function in HHVM aka the HipHop Virtual Machine before 3.5.0 allows remote attackers to inject arbitrary web script or HTML via a crafted string to the wddxserializevalue function...
Design/Logic Flaw
The WDDX deserializer in the wddx extension in PHP 5 before 5.2.1 and PHP 4 before 4.4.5 does not properly initialize the keylength variable for a numerical key, which allows context-dependent attackers to read stack memory via a wddxPacket element that contains a variable with a string name befo...