Lucene search
+L

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/05/22 12:0 a.m.16 views

Oracle Linux 9 : php (ELSA-2025-7315)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7315 advisory. - Fix Leak partial content of the heap through heap buffer over-read CVE-2024-8929 - Fix Configuring a proxy in a stream context might allow for CRLF...

8.2CVSS7.5AI score0.49336EPSS
Exploits10References10
RedHat Linux
RedHat Linux
added 2025/05/13 8:42 a.m.10 views

Moderate: Red Hat Security Advisory: php security update

An update for php is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

8.2CVSS6.8AI score0.49336EPSS
Exploits10References12
Amazon
Amazon
added 2025/04/16 12:0 a.m.25 views

Important: php

Issue Overview: An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A heap out-of-bounds write or read occurs in nextstateval during regular expression compilation. Octal numbers larger than 0xff are not handled correctly i...

9.8CVSS8.8AI score0.08003EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2025/02/26 12:0 a.m.13 views

Amazon Linux 2023 : php8.1, php8.1-bcmath, php8.1-cli (ALAS2023-2025-845)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-845 advisory. The upstream advisory describes this issue as follows: A memory-related vulnerability in PHP's filter handling system, particularly when processing input with convert.quoted-printable-decode...

9.8CVSS7.3AI score0.02286EPSS
Exploits6References18
OSV
OSV
added 2024/10/25 7:44 p.m.26 views

GHSA-Q34M-JH98-GWM2 Werkzeug possible resource exhaustion when parsing file data in forms

Applications using Werkzeug to parse multipart/form-data requests are vulnerable to resource exhaustion. A specially crafted form body can bypass the Request.maxformmemorysize setting. The Request.maxcontentlength setting, as well as resource limits provided by deployment software and platforms,...

7.5CVSS6AI score0.01102EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/10/03 12:0 a.m.92 views

PHP 8.3.x < 8.3.12 Multiple Vulnerabilities

According to its self-reported version number, the version of PHP installed on the remote host is 8.1.x prior to 8.1.30, 8.2.x prior to 8.2.24, or 8.3.x prior to 8.3.12. It is, therefore, affected by multiple vulnerabilities: - Parameter injection vulnerability with a bypass of CVE-2024-4577...

9.8CVSS8.6AI score0.99987EPSS
Exploits68References5
Rows per page
Query Builder