CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•7 views

Astra Linux - уязвимость в php7.3

In PHP versions 7.3.x below 7.3.26, 7.4.x below 7.4.14, and 8.0.0, when validating URLs using functions like filtervar$url, FILTERVALIDATEURL, PHP will accept a URL with an invalid password as a valid URL. This may cause functions that rely on the validity of URLs to misinterpret the URL and...

5.3CVSS6.8AI score0.07003EPSS

Exploits1References2

Tenable Nessus•added 2026/05/11 12:0 a.m.•5 views

Unity Linux 20.1060e / 20.1070e Security Update: php (UTSA-2026-017496)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017496 advisory. In PHP versions 7.3.x below 7.3.26, 7.4.x below 7.4.14 and 8.0.0, when validating URL with functions like filtervar$url, FILTERVALIDATEURL, PHP will accept an URL wi...

5.3CVSS6.8AI score0.07003EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-28205

Malware in sbrugna...

5.3CVSS6.9AI score0.07003EPSS

Exploits1References15

OSV•added 2025/01/14 7:22 p.m.•15 views

BIT-PHP-MIN-2021-21705 Incorrect URL validation in FILTER_VALIDATE_URL

In PHP versions 7.3.x below 7.3.29, 7.4.x below 7.4.21 and 8.0.x below 8.0.8, when using URL validation functionality via filtervar function with FILTERVALIDATEURL parameter, an URL with invalid password field can be accepted as valid. This can lead to the code incorrectly parsing the URL and...

5.3CVSS6.2AI score0.00294EPSS

Exploits1References5

SUSE CVE•added 2023/02/15 5:2 a.m.•3 views

SUSE CVE-2016-4484

The Debian initrd script for the cryptsetup package 2:1.7.3-2 and earlier allows physically proximate attackers to gain shell access via many log in attempts with an invalid password...

7.2CVSS7.1AI score0.00459EPSS

Exploits5References3

Positive Technologies•added 2021/07/02 12:0 a.m.•5 views

PT-2021-3598 · Php +10 · Php +10

Name of the Vulnerable Software and Affected Versions: PHP versions 7.3.x through 7.3.28 PHP versions 7.4.x through 7.4.20 PHP versions 8.0.x through 8.0.7 Description: The issue is related to the URL validation functionality via the filter var function with the FILTER VALIDATE URL parameter. It...

9.8CVSS6.9AI score0.94053EPSS

Exploits106References366

Positive Technologies•added 2020/07/06 12:0 a.m.•5 views

PT-2020-5867 · Php +9 · Php +9

Name of the Vulnerable Software and Affected Versions: PHP versions 7.3.x through 7.3.25 PHP versions 7.4.x through 7.4.13 PHP version 8.0.0 Description: The issue is related to insufficient input validation in PHP's URL validation functions, such as filter var$url, FILTER VALIDATE URL. This allo...

9.8CVSS6.6AI score0.94053EPSS

Exploits107References383

Tenable Nessus•added 2006/10/14 12:0 a.m.•28 views

Debian DSA-967-1 : elog - several vulnerabilities

Several security problems have been found in elog, an electronic logbook to manage notes. The Common Vulnerabilities and Exposures Project identifies the following problems : - CVE-2005-4439 'GroundZero Security' discovered that elog insufficiently checks the size of a buffer used for processing...

7.8CVSS6.1AI score0.08141EPSS

Exploits1References16

CVE•added 2000/11/29 5:0 a.m.•44 views

CVE-2000-1037

The CVE-2000-1037 issue affects Check Point Firewall-1 session agent versions 3.0 through 4.1. The root cause is that the service returns different error messages for invalid usernames versus invalid passwords, enabling remote attackers to enumerate valid usernames and perform brute-force passwor...

7.5CVSS7.2AI score0.12095EPSS

Exploits1References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by