Lucene search
K

40 matches found

F5 Networks
F5 Networks
added 2023/02/21 7:31 p.m.41 views

K16336: PHP vulnerability CVE-2015-0273

Security Advisory Description Multiple use-after-free vulnerabilities in ext/date/phpdate.c in PHP before 5.4.38, 5.5.x before 5.5.22, and 5.6.x before 5.6.6 allow remote attackers to execute arbitrary code via crafted serialized input containing a 1 R or 2 r type specifier in a DateTimeZone data...

7.5CVSS8.4AI score0.41315EPSS
Exploits9
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.49 views

Mageia: Security Advisory (MGASA-2015-0090)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.41315EPSS
Exploits11References5
Veracode
Veracode
added 2019/05/02 5:39 a.m.51 views

Buffer Overflow

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The php54 packages provide a recent stable release of PHP with the PEAR 1.9.4, APC 3.1.15, and memcache 3.0.8 PECL extensions, and a number of additional utilities. The php54 packages have been upgraded to...

7.5CVSS9.2AI score0.53166EPSS
Exploits43References35Affected Software6
Veracode
Veracode
added 2019/05/02 5:39 a.m.60 views

Use-After-Free

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The php55 packages provide a recent stable release of PHP with the PEAR 1.9.4, memcache 3.0.8, and mongo 1.4.5 PECL extensions, and a number of additional utilities. The php55 packages have been upgraded to...

7.5CVSS9.2AI score0.53166EPSS
Exploits32References32Affected Software6
Veracode
Veracode
added 2019/05/02 5:39 a.m.49 views

Use-After-Free

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The php55 packages provide a recent stable release of PHP with the PEAR 1.9.4, memcache 3.0.8, and mongo 1.4.5 PECL extensions, and a number of additional utilities. The php55 packages have been upgraded to...

7.5CVSS9.2AI score0.53166EPSS
Exploits32References49Affected Software5
Veracode
Veracode
added 2019/05/02 5:39 a.m.45 views

Memory Corruption

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The php55 packages provide a recent stable release of PHP with the PEAR 1.9.4, memcache 3.0.8, and mongo 1.4.5 PECL extensions, and a number of additional utilities. The php55 packages have been upgraded to...

7.5CVSS9.2AI score0.53166EPSS
Exploits32References26Affected Software6
Tenable Nessus
Tenable Nessus
added 2019/01/09 12:0 a.m.104 views

PHP 5.6.x < 5.6.6 Multiple Vulnerabilities (GHOST)

According to its banner, the version of PHP 5.6.x installed on the remote host is prior to 5.6.6. It is, therefore, affected by multiple vulnerabilities : - A heap-based buffer overflow flaw in the GNU C Library glibc due to improperly validating user-supplied input in the glibc functions...

10CVSS9.3AI score0.94859EPSS
Exploits40References8
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.53 views

SUSE SLES12 Security Update : php5 (SUSE-SU-2015:0424-1)

php5 was updated to fix two security issues. These security issues were fixed : - CVE-2014-9652: Out of bounds read in mconvert bnc917150. - CVE-2015-0273: Use after free vulnerability in unserialize with DateTimeZone bnc918768. Note that Tenable Network Security has extracted the preceding...

7.5CVSS6.8AI score0.41315EPSS
Exploits9References7
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 7:50 p.m.55 views

Security Bulletin: IBM Tealeaf Customer Experience PCA Web UI PHP security issues

Summary The IBM Tealeaf Customer Experience PCA Web UI uses a version of PHP with reported security issues. Vulnerability Details CVEID: CVE-2015-0273 DESCRIPTION: PHP could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free error in unserialize with...

10CVSS1.1AI score0.50129EPSS
Exploits23Affected Software1
Oracle linux
Oracle linux
added 2016/02/04 12:0 a.m.82 views

php55 security and bug fix update

php55 2.0-1 - fix incorrect selinux contexts 1194336 php55-php 5.5.21-2.0.1 - add dtrace-utils as build dependency 5.5.21-2 - core: fix use-after-free vulnerability in the processnesteddata function unserialize CVE-2015-2787 - core: fix NUL byte injection in file name argument of moveuploadedfile...

10CVSS1.5AI score0.53166EPSS
Exploits34
OpenVAS
OpenVAS
added 2015/10/13 12:0 a.m.296 views

SUSE: Security Advisory for PHP (SUSE-SU-2015:0436-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.41315EPSS
Exploits9References1
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.52 views

Oracle: Security Advisory (ELSA-2015-1218)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.3AI score0.50129EPSS
Exploits29References2
OpenVAS
OpenVAS
added 2015/07/23 12:0 a.m.190 views

PHP < 5.4.38, 5.5.x < 5.5.22, 5.6.x < 5.6.6 Multiple RCE Vulnerabilities (Jul 2015) - Windows

PHP is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...

8.3AI score
Exploits0References5
OpenVAS
OpenVAS
added 2015/07/23 12:0 a.m.84 views

PHP < 5.4.38, 5.5.x < 5.5.22, 5.6.x < 5.6.6 Multiple RCE Vulnerabilities (Jul 2015) - Linux

PHP is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...

7.5CVSS8.3AI score0.41315EPSS
Exploits9References5
OpenVAS
OpenVAS
added 2015/07/10 12:0 a.m.51 views

RedHat Update for php RHSA-2015:1218-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.50129EPSS
Exploits29References2
OpenVAS
OpenVAS
added 2015/07/10 12:0 a.m.77 views

CentOS Update for php CESA-2015:1218 centos6

Check the version of php SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882219";...

10CVSS6.8AI score0.15531EPSS
Exploits2References2
Cent OS
Cent OS
added 2015/07/09 7:23 p.m.123 views

php security update

CentOS Errata and Security Advisory CESA-2015:1218 Updated php packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, whic...

10CVSS7.4AI score0.50129EPSS
Exploits30References7
Tenable Nessus
Tenable Nessus
added 2015/06/25 12:0 a.m.51 views

Scientific Linux Security Update : php on SL7.x x86_64 (20150623)

A flaw was found in the way the PHP module for the Apache httpd web server handled pipelined requests. A remote attacker could use this flaw to trigger the execution of a PHP script in a deinitialized interpreter, causing it to crash or, possibly, execute arbitrary code. CVE-2015-3330 A flaw was...

10CVSS8.1AI score0.53166EPSS
Exploits44References32
Tenable Nessus
Tenable Nessus
added 2015/06/24 12:0 a.m.314 views

CentOS 7 : php (CESA-2015:1135)

Updated php packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings,...

10CVSS8AI score0.53166EPSS
Exploits45References33
RedHat Linux
RedHat Linux
added 2015/06/23 8:11 a.m.81 views

Important: Red Hat Security Advisory: php security and bug fix update

Updated php packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings,...

10CVSS7.4AI score0.53166EPSS
Exploits45References29
Rows per page
Query Builder