Lucene search
+L

5 matches found

BDU FSTEC
BDU FSTEC
added 2022/04/20 12:0 a.m.10 views

The vulnerability of the ext/wddx/wddx.c component of the PHP interpreter allows a attacker to cause a service failure.

The vulnerability of the ext/wddx/wddx.c component of the PHP interpreter is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause service failures through a corrupted XML document...

7.8CVSS7.4AI score0.0883EPSS
Exploits1References12Affected Software3
OSV
OSV
added 2017/07/10 2:29 p.m.41 views

CVE-2017-11143

In PHP before 5.6.31, an invalid free in the WDDX deserialization of boolean parameters could be used by attackers able to inject XML for deserialization to crash the PHP interpreter, related to an invalid free for an empty boolean element in ext/wddx/wddx.c...

7.5CVSS9.3AI score
Exploits0References9
UbuntuCve
UbuntuCve
added 2017/07/10 12:0 a.m.34 views

CVE-2017-11143

In PHP before 5.6.31, an invalid free in the WDDX deserialization of boolean parameters could be used by attackers able to inject XML for deserialization to crash the PHP interpreter, related to an invalid free for an empty boolean element in ext/wddx/wddx.c...

7.5CVSS6.9AI score0.06846EPSS
Exploits0References5
CVE
CVE
added 2016/09/12 1:0 a.m.213 views

CVE-2016-7130

CVE-2016-7130 affects PHP’s WDDX extension (ext/wddx/wddx.c) in PHP builds prior to 5.6.25 and 7.x prior to 7.0.10. The issue arises when deserializing WDDX XML containing a binary element with an invalid base64 value, allowing remote attackers to trigger a NULL pointer dereference and crash the ...

7.5CVSS7.9AI score0.06672EPSS
Exploits1References10Affected Software1
Debian CVE
Debian CVE
added 2016/09/12 1:0 a.m.41 views

CVE-2016-7130

Removed by vendor...

7.5CVSS8.7AI score0.06672EPSS
Exploits1
Rows per page
Query Builder