CVE-2026-43861

mutt before 2.3.2 does not check for '\0' in urlpctdecode...

ROS-20250822-24

A vulnerability in the PHP programming language interpreter is related to insufficient null byte checking in the implementation of the fsockopen function when handling hostnames. Exploitation of the vulnerability could allow an attacker acting remotely to perform SSRF attacks A vulnerability in t...

RUSTSEC-2025-0020 Risk of buffer overflow in `PyString::from_object`

PyString::fromobject took &str arguments and forwarded them directly to the Python C API without checking for terminating nul bytes. This could lead the Python interpreter to read beyond the end of the &str data and potentially leak contents of the out-of-bounds read by raising a Python exception...

DEBIAN-CVE-2025-21787

In the Linux kernel, the following vulnerability has been resolved: team: better TEAMOPTIONTYPESTRING validation syzbot reported following splat 1 Make sure user-provided data contains one nul byte. 1 BUG: KMSAN: uninit-value in stringnocheck lib/vsprintf.c:633 inline BUG: KMSAN: uninit-value in...

PHP 7.1.0 / 5.6.29 missing null byte checks for paths in curl_file_create() Vulnerability

Exploit for php platform in category dos / poc Description: ------------ Missing null byte checks for paths in curlfilector curlfilecreate doesn’t ensure that pathnames lack NULL byte, which might allow attacker to manipulate the upload file name and path. Affected code:...

PHP DOM and GD Extension Limit Bypass Vulnerability

PHP is a general-purpose scripting language. A security vulnerability exists in the PHP DOM and GD extensions due to a missing null byte check for paths in the program. Allowing remote attackers to exploit the vulnerability could bypass target file system access restrictions and access arbitrary...