Lucene search
K

23 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 7 : php-5.4.16-48.el7 (AXSA:2020-019:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-019:01 advisory. php: Reflected XSS on PHAR 404 page CVE-2018-5712 php: Stack-based buffer under-read in phpstreamurlwraphttpex in httpfopenwrapper.c when parsing HTT...

9.8CVSS5.8AI score0.87606EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2018-5712

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1. There is Reflected XSS on the PHAR 404 error pag...

6.1CVSS6.9AI score0.79949EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2023/02/21 6:53 p.m.46 views

K10204425: PHP vulnerability CVE-2018-5712

Security Advisory Description An issue was discovered in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1. There is Reflected XSS on the PHAR 404 error page via the URI of a request for a .phar file. CVE-2018-5712 Impact There is no impact; F5 products are not...

6.1CVSS6.8AI score0.79949EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.35 views

Slackware: Security Advisory (SSA:2018-136-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8AI score0.79949EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2018:0216-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS7.8AI score0.79949EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2018:0308-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS7.8AI score0.79949EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/07/03 12:0 a.m.82 views

Huawei EulerOS: Security Advisory for php (EulerOS-SA-2020-1747)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.5AI score0.9947EPSS
Exploits94References4
Tenable Nessus
Tenable Nessus
added 2020/04/21 12:0 a.m.60 views

Scientific Linux Security Update : php on SL7.x x86_64 (20200407)

php: Reflected XSS on PHAR 404 page php: Stack-based buffer under-read in phpstreamurlwraphttpex in httpfopenwrapper.c when parsing HTTP response php: Reflected XSS vulnerability on PHAR 403 and 404 error pages php: Out-of-bounds read in base64decodexmlrpc in ext/xmlrpc/libxmlrpc/base64.c C Tenab...

9.8CVSS7.1AI score0.87606EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2020/04/10 12:0 a.m.337 views

CentOS 7 : php (RHSA-2020:1112)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1112 advisory. - An issue was discovered in ext/phar/pharobject.c in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. There is...

9.8CVSS7.6AI score0.87606EPSS
Exploits4References5
RedHat Linux
RedHat Linux
added 2019/08/19 8:42 a.m.202 views

Moderate: Red Hat Security Advisory: rh-php71-php security, bug fix, and enhancement update

An update for rh-php71-php is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS6.9AI score0.87606EPSS
Exploits30References34
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.36 views

SUSE SLES12 Security Update : php7 (SUSE-SU-2018:0308-1)

This update for php7 fixes several issues. These security issues were fixed : - CVE-2018-5712: Prevent reflected XSS on the PHAR 404 error page via the URI of a request for a .phar file that allowed for information disclosure bsc1076220. - CVE-2018-5711: Prevent integer signedness error that coul...

6.1CVSS6.6AI score0.79949EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2018/05/16 12:0 a.m.49 views

Fedora Update for php FEDORA-2018-ee6707d519

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.79949EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/05/04 12:0 a.m.50 views

Fedora Update for php FEDORA-2018-6071a600e8

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.79949EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/05/04 12:0 a.m.81 views

Fedora 26 : php (2018-6071a600e8)

PHP version 7.1.17 26 Apr 2018 Date: - Fixed bug php76131 mismatch arginfo for datecreate. carusogabriel Exif: - Fixed bug php76130 Heap Buffer Overflow READ: 1786 in exifiifaddvalue. Stas FPM: - Fixed bug php68440 ERROR: failed to reload: execvp failed: Argument list too long. Jacob Hipps - Fixe...

8.8CVSS6.9AI score0.79949EPSS
Exploits0References6
OSV
OSV
added 2018/04/29 9:29 p.m.3 views

ALPINE-CVE-2018-10547

An issue was discovered in ext/phar/pharobject.c in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. There is Reflected XSS on the PHAR 403 and 404 error pages via request data of a request for a .phar file. NOTE: this vulnerability exists because of an...

6.1CVSS6.5AI score0.0363EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2018/03/27 12:0 a.m.59 views

SUSE SLES11 Security Update : php53 (SUSE-SU-2018:0806-1)

This update for php53 fixes several issues. These security issues were fixed : - CVE-2016-10712: In PHP all of the return values of streamgetmetadata could be controlled if the input can be controlled e.g., during file uploads. bsc1080234 - CVE-2018-5712: Prevent reflected XSS on the PHAR 404 err...

9.8CVSS8.5AI score0.87606EPSS
Exploits11References19
OpenVAS
OpenVAS
added 2018/03/20 12:0 a.m.74 views

Ubuntu: Security Advisory (USN-3600-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.5AI score0.87606EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2018/02/14 12:0 a.m.56 views

Ubuntu: Security Advisory (USN-3566-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.79949EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2018/02/09 12:0 a.m.35 views

Amazon Linux AMI : php56 / php70,php71 (ALAS-2018-946)

Reflected XSS in .phar 404 page An issue was discovered in PHP; there is Reflected XSS on the PHAR 404 error page via the URI of a request for a .phar file. CVE-2018-5712 Denial of Service DoS via infinite loop in libgd gdImageCreateFromGifCtx function in ext/gd/libgd/gdgifin.c The gdgifin.c file...

6.1CVSS6.4AI score0.79949EPSS
Exploits1References3
Amazon
Amazon
added 2018/02/07 12:0 a.m.78 views

Medium: php56, php70, php71

Issue Overview: Reflected XSS in .phar 404 page An issue was discovered in PHP; there is Reflected XSS on the PHAR 404 error page via the URI of a request for a .phar file. CVE-2018-5712 Denial of Service DoS via infinite loop in libgd gdImageCreateFromGifCtx function in ext/gd/libgd/gdgifin.c Th...

6.1CVSS6.8AI score0.79949EPSS
Exploits1
Rows per page
Query Builder