4 matches found
BIT-PHP-2026-6104 Global buffer over-read in mb_convert_encoding() with attacker-supplied encoding
In PHP versions 8.4. before 8.4.21 and 8.5. before 8.5.6, when an encoding name containing an embedded NUL byte is passed to mbconvertencoding or related mbstring functions, the code incorrectly assumes that when strncasecmp returns 0 it means the strings have the same length. This can lead to...
EUVD-2026-28979
In PHP versions 8.4. before 8.4.21 and 8.5. before 8.5.6, when an encoding name containing an embedded NUL byte is passed to mbconvertencoding or related mbstring functions, the code incorrectly assumes that when strncasecmp returns 0 it means the strings have the same length. This can lead to...
Cross site scripting
Out-of-bounds write in the 1 mbdetectencoding, 2 mbsendmail, and 3 mbdetectorder functions in Facebook HHVM before 3.15.0 allows attackers to have unspecified impact via unknown vectors...
UBUNTU-CVE-2016-6870
Out-of-bounds write in the 1 mbdetectencoding, 2 mbsendmail, and 3 mbdetectorder functions in Facebook HHVM before 3.15.0 allows attackers to have unspecified impact via unknown vectors...