Lucene search
K

30 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 7 : php-5.4.16-48.el7 (AXSA:2020-019:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-019:01 advisory. php: Reflected XSS on PHAR 404 page CVE-2018-5712 php: Stack-based buffer under-read in phpstreamurlwraphttpex in httpfopenwrapper.c when parsing HTT...

9.8CVSS5.8AI score0.87606EPSS
Exploits4References5
F5 Networks
F5 Networks
added 2023/02/21 6:47 p.m.78 views

K61561040: PHP vulnerability CVE-2018-10547

Security Advisory Description An issue was discovered in ext/phar/pharobject.c in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. There is Reflected XSS on the PHAR 403 and 404 error pages via request data of a request for a .phar file. NOTE: this vulnerabilit...

6.1CVSS7.1AI score0.0363EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.33 views

Ubuntu: Security Advisory (USN-3646-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.08677EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.35 views

Slackware: Security Advisory (SSA:2018-136-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8AI score0.79949EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.37 views

Mageia: Security Advisory (MGASA-2018-0222)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.7AI score0.10433EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2018:1176-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.10433EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.35 views

SUSE: Security Advisory (SUSE-SU-2018:1294-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.10433EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2018:1291-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.10433EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/04/21 12:0 a.m.60 views

Scientific Linux Security Update : php on SL7.x x86_64 (20200407)

php: Reflected XSS on PHAR 404 page php: Stack-based buffer under-read in phpstreamurlwraphttpex in httpfopenwrapper.c when parsing HTTP response php: Reflected XSS vulnerability on PHAR 403 and 404 error pages php: Out-of-bounds read in base64decodexmlrpc in ext/xmlrpc/libxmlrpc/base64.c C Tenab...

9.8CVSS7.1AI score0.87606EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2020/04/10 12:0 a.m.337 views

CentOS 7 : php (RHSA-2020:1112)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1112 advisory. - An issue was discovered in ext/phar/pharobject.c in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. There is...

9.8CVSS7.6AI score0.87606EPSS
Exploits4References5
RedHat Linux
RedHat Linux
added 2019/08/19 8:42 a.m.202 views

Moderate: Red Hat Security Advisory: rh-php71-php security, bug fix, and enhancement update

An update for rh-php71-php is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS6.9AI score0.87606EPSS
Exploits30References34
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.40 views

SUSE SLES12 Security Update : php5 (SUSE-SU-2018:1291-1)

This update for php5 fixes the following issues: Security issues fixed : - CVE-2018-10545: Fix access controls in FPM child processes bsc1091367. - CVE-2018-10547: Fix Reflected XSS on the PHAR 403 and 404 error pages bsc1091362. - CVE-2018-10546: Fix an infinite loop exists in ext/iconv/iconv.c...

7.5CVSS6.3AI score0.10433EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.41 views

SUSE SLES12 Security Update : php7 (SUSE-SU-2018:1176-1)

This update for php7 fixes the following issues: Security issues fixed : - CVE-2018-10545: Fix access controls in FPM child processes bsc1091367. - CVE-2018-10547: Fix Reflected XSS on the PHAR 403 and 404 error pages bsc1091362. - CVE-2018-10546: Fix an infinite loop exists in ext/iconv/iconv.c...

7.5CVSS6.3AI score0.10433EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2018/09/24 12:0 a.m.70 views

Tenable SecurityCenter < 5.7.1 Multiple Vulnerabilities (TNS-2018-12)

According to its self-reported version, the Tenable SecurityCenter application installed on the remote host is prior to 5.7.1. It is, therefore, affected by multiple vulnerabilities. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported...

9.8CVSS6.5AI score0.87606EPSS
Exploits5References12
Debian
Debian
added 2018/07/05 8:34 p.m.87 views

[SECURITY] [DSA 4240-1] php7.0 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4240-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 05, 2018 https://www.debian.org/security/faq -...

9.8CVSS8.8AI score0.87606EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2018/06/27 12:0 a.m.58 views

Debian DLA-1397-1 : php5 security update

Several vulnerabilities were found in PHP, a widely-used open source general purpose scripting language : CVE-2018-7584 A stack-buffer-overflow while parsing HTTP response results in copying a large string and possible memory corruption and/or denial of service CVE-2018-10545 Dumpable FPM child...

9.8CVSS6.6AI score0.87606EPSS
Exploits3References8
Debian
Debian
added 2018/06/26 6:41 p.m.64 views

[SECURITY] [DLA 1397-1] php5 security update

Package : php5 Version : 5.6.36+dfsg-0+deb8u1 CVE ID : CVE-2018-7584 CVE-2018-10545 CVE-2018-10546 CVE-2018-10547 CVE-2018-10548 CVE-2018-10549 Several vulnerabilities were found in PHP, a widely-used open source general purpose scripting language: CVE-2018-7584 A stack-buffer-overflow while...

9.8CVSS6.7AI score0.87606EPSS
Exploits3
Slackware Linux
Slackware Linux
added 2018/05/17 4:21 a.m.118 views

[slackware-security] php

New php packages are available for Slackware 14.0, 14.1, and 14.2 to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/php-5.6.36-i586-1slack14.2.txz: Upgraded. This fixes many bugs, including some security issues: Heap Buffer Overflow READ: 1786 in...

8.8CVSS0.4AI score0.79949EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/05/17 12:0 a.m.60 views

Slackware 14.0 / 14.1 / 14.2 : php (SSA:2018-136-02)

New php packages are available for Slackware 14.0, 14.1, and 14.2 to fix security issues. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2018-136-02. The text itself is copyright C Slackware Linux, Inc...

8.8CVSS6.6AI score0.10433EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2018/05/17 12:0 a.m.51 views

openSUSE: Security Advisory for php5 (openSUSE-SU-2018:1317-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.9AI score0.10433EPSS
Exploits0References2
Rows per page
Query Builder