Lucene search
K

19 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.49 views

Mageia: Security Advisory (MGASA-2015-0365)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.6AI score0.46801EPSS
Exploits7References5
Veracode
Veracode
added 2019/05/02 5:27 a.m.50 views

Denial Of Service (DoS)

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Multiple flaws were discovered in the way PHP performed object unserialization. Specially crafted input processed by the unserialize function could cause a PHP application to crash or, possibly, execute arbitrar...

9.8CVSS9.1AI score0.46801EPSS
Exploits8References8Affected Software1
Veracode
Veracode
added 2019/05/02 5:27 a.m.57 views

Denial Of Service (DoS)

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Multiple flaws were discovered in the way PHP performed object unserialization. Specially crafted input processed by the unserialize function could cause a PHP application to crash or, possibly, execute arbitrar...

9.8CVSS9.2AI score0.46801EPSS
Exploits8References9Affected Software1
Veracode
Veracode
added 2019/05/02 5:27 a.m.40 views

Use-After-Free

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Multiple flaws were discovered in the way PHP performed object unserialization. Specially crafted input processed by the unserialize function could cause a PHP application to crash or, possibly, execute arbitrar...

9.8CVSS9.2AI score0.46801EPSS
Exploits8References10Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.62 views

SUSE SLES12 Security Update : php5 (SUSE-SU-2015:1633-1)

This update of PHP5 brings several security fixes. Security fixes : - CVE-2015-6831: A use after free vulnerability in unserialize has been fixed which could be used to crash php or potentially execute code. bnc942291 bnc942294 bnc942295 - CVE-2015-6832: A dangling pointer in the unserialization ...

9.8CVSS9.1AI score0.46801EPSS
Exploits7References28
OpenVAS
OpenVAS
added 2016/07/14 12:0 a.m.104 views

PHP < 5.4.45, 5.5.x < 5.5.29, 5.6.x < 5.6.13 Multiple Vulnerabilities (Jul 2016) - Linux

PHP is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...

9.8CVSS8.4AI score0.46801EPSS
Exploits8References7
OSV
OSV
added 2016/05/16 10:59 a.m.4 views

BELL-CVE-2015-6835 CVE-2015-6835 does not affect BellSoft software

Bulletin has no description...

9.8CVSS5.8AI score0.36992EPSS
Exploits3References1
CVE
CVE
added 2016/05/16 10:0 a.m.316 views

CVE-2015-6835

CVE-2015-6835 affects PHP session deserialization. The session deserializer mishandles multiple php_var_unserialize calls, allowing use-after-free via crafted session data and enabling remote code execution or DoS. Affected: PHP 5.4.45 and 5.5.x before 5.5.29, 5.6.x before 5.6.13. Mitigation: upg...

9.8CVSS8.5AI score0.36992EPSS
Exploits3References6Affected Software1
myhack58
myhack58
added 2016/01/08 12:0 a.m.10 views

Joomla vulnerability every day by hackers 1 6 6 0 0 attack-vulnerability warning-the black bar safety net

Whenever a new a vulnerability time, the hackers would hurry up in the vast Internet looking for vulnerable websites, and then invade the site. According to the researchers, they found that joomla latest CVE-2 0 1 5-8 5 6 2 vulnerability, i.e. joomla deserialization remote command execution...

1.9AI score
Exploits0
Packet Storm
Packet Storm
added 2015/12/17 12:0 a.m.574 views

Joomla HTTP Header Unauthenticated Remote Code Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Joomla HTTP Header Unauthenticated Remote Code Execution', 'Description' = %q Joomla suffers from an unauthenticated remote code...

7.5CVSS0.3AI score0.98283EPSS
Exploits16
Amazon
Amazon
added 2015/10/20 12:0 a.m.80 views

Medium: php55

Issue Overview: As reported upstream https://bugs.php.net/bug.php?id=69720, A NULL pointer dereference flaw was found in the way PHP's Phar extension parsed Phar archives. A specially crafted archive could cause PHP to crash. CVE-2015-7803 A flaw was discovered in the way PHP performed object...

9.8CVSS9.1AI score0.46801EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2015/10/01 12:0 a.m.58 views

Ubuntu 14.04 LTS : PHP vulnerabilities (USN-2758-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2758-1 advisory. It was discovered that the PHP phar extension incorrectly handled certain files. A remote attacker could use this issue to cause PHP to crash, resulting ...

10CVSS8.9AI score0.46801EPSS
Exploits8References11
OpenVAS
OpenVAS
added 2015/10/01 12:0 a.m.72 views

Ubuntu: Security Advisory (USN-2758-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9AI score0.46801EPSS
Exploits8References2
Ubuntu
Ubuntu
added 2015/09/30 8:10 p.m.107 views

USN-2758-1: PHP vulnerabilities

It was discovered that the PHP phar extension incorrectly handled certain files. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service. CVE-2015-5589 It was discovered that the PHP phar extension incorrectly handled certain filepaths. A remote attacker cou...

10CVSS8.7AI score0.46801EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2015/09/28 12:0 a.m.59 views

openSUSE Security Update : php5 (openSUSE-2015-609)

The PHP5 script interpreter was updated to fix various security issues : - CVE-2015-6831: A use after free vulnerability in unserialize has been fixed which could be used to crash php or potentially execute code. bnc942291 bnc942294 bnc942295 - CVE-2015-6832: A dangling pointer in the...

9.8CVSS8.9AI score0.46801EPSS
Exploits7References17
OpenVAS
OpenVAS
added 2015/09/26 12:0 a.m.44 views

openSUSE: Security Advisory for php5 (openSUSE-SU-2015:1628-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.8AI score0.46801EPSS
Exploits7References1
Debian
Debian
added 2015/09/13 2:58 p.m.62 views

[SECURITY] [DSA 3358-1] php5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3358-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 13, 2015 https://www.debian.org/security/faq -...

7.5CVSS1.1AI score0.46801EPSS
Exploits7
Debian
Debian
added 2015/09/13 2:58 p.m.54 views

[SECURITY] [DSA 3358-1] php5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3358-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 13, 2015 https://www.debian.org/security/faq -...

9.8CVSS9.7AI score0.46801EPSS
Exploits7
Circl
Circl
added 2015/09/09 12:0 a.m.73 views

CVE-2015-6835

creationtimestamp| type| source ---|---|--- 2015-09-09 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38123 2025-02-06 03:13:42+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:41+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd...

9.8CVSS7.8AI score0.36992EPSS
Exploits3References1
Rows per page
Query Builder