Lucene search
K

33 matches found

OSV
OSV
added 2017/08/18 3:29 a.m.27 views

CVE-2017-12932

ext/standard/varunserializer.re in PHP 7.0.x through 7.0.22 and 7.1.x through 7.1.8 is prone to a heap use after free while unserializing untrusted data, related to improper use of the hash API for key deletion in a situation with an invalid array size. Exploitation of this issue can have an...

9.8CVSS6.9AI score
Exploits0References9
Debian CVE
Debian CVE
added 2017/08/18 3:0 a.m.47 views

CVE-2017-12934

Removed by vendor...

7.5CVSS8.6AI score0.03634EPSS
Exploits0
CVE
CVE
added 2017/08/18 3:0 a.m.132 views

CVE-2017-12934

PHP 7.0.x before 7.0.21 and 7.1.x before 7.1.7 are vulnerable to a heap use-after-free in unserializing untrusted data, specifically in ext/standard/var_unserializer.re, tied to the zval_get_type function in Zend/zend_types.h. Exploitation can impact PHP integrity (official CVE description: CVE-2...

7.5CVSS8.5AI score0.03634EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/07/13 12:0 a.m.121 views

PHP 7.0.x < 7.0.21 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 7.0.x prior to 7.0.21. It is, therefore, affected by the following vulnerabilities : - An out-of-bounds read error exists in the PCRE library in the compilebracketmatchingpath function within file pcrejitcompile.c. An...

9.8CVSS7.3AI score0.07511EPSS
Exploits5References14
Tenable Nessus
Tenable Nessus
added 2017/05/05 12:0 a.m.9 views

PHP 7.0.x < 7.0.16 / 7.1.x < 7.1.2 Multiple Vulnerabilities

Binary data 700086.prm...

7.3AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/02/23 12:0 a.m.133 views

PHP 7.0.x < 7.0.16 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 7.0.x prior to 7.0.16. It is, therefore, affected by the following vulnerabilities : - A denial of service vulnerability exists in mysqli.c due to a memory leak. An unauthenticated, remote attacker can exploit this to...

6.9AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/01/02 12:0 a.m.25 views

PHP 7.0.x < 7.0.14 RCE

Binary data 9842.prm...

9.8CVSS9.8AI score0.04152EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2016/09/22 12:0 a.m.262 views

PHP 7.0.x < 7.0.11 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 7.0.x prior to 7.0.11. It is, therefore, affected by multiple vulnerabilities : - An heap buffer overflow condition exists in the phpmysqlndrowpreadtextprotocolaux function within file ext/mysqlnd/mysqlndwireprotocol....

9.8CVSS8.3AI score0.11402EPSS
Exploits6References7
Tenable Nessus
Tenable Nessus
added 2016/08/23 12:0 a.m.60 views

PHP 7.0.x < 7.0.10 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 7.0.x prior to 7.0.10. It is, therefore, affected by multiple vulnerabilities : - An unspecified flaw exists in the objectcommon2 function in varunserializer.c that occurs when handling objects during deserialization...

9.8CVSS7.4AI score0.16482EPSS
Exploits11References12
Tenable Nessus
Tenable Nessus
added 2016/07/26 12:0 a.m.186 views

PHP 7.0.x < 7.0.9 Multiple Vulnerabilities (httpoxy)

According to its banner, the version of PHP running on the remote web server is 7.0.x prior to 7.0.9. It is, therefore, affected by multiple vulnerabilities : - A man-in-the-middle vulnerability exists, known as 'httpoxy', due to a failure to properly resolve namespace conflicts in accordance wit...

9.8CVSS7.8AI score0.50427EPSS
Exploits13References14
Tenable Nessus
Tenable Nessus
added 2016/04/06 12:0 a.m.76 views

PHP 7.0.x < 7.0.5 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 7.0.x prior to 7.0.5. It is, therefore, affected by multiple vulnerabilities : - A buffer over-write condition exists in the finfoopen function due to improper validation of magic files. An unauthenticated, remote...

9.8CVSS8.7AI score0.19455EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2016/03/17 12:0 a.m.57 views

PHP 7.0.x < 7.0.4 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 7.0.x prior to 7.0.4. It is, therefore, affected by multiple vulnerabilities : - A type confusion error exists in file ext/soap/phphttp.c in the makehttpsoaprequest function when handling cookie data. An...

9.8CVSS8.8AI score0.05666EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2016/02/11 12:0 a.m.125 views

PHP 7.0.x < 7.0.3 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 7.0.x prior to 7.0.3. It is, therefore, affected by multiple vulnerabilities : - The Perl-Compatible Regular Expressions PCRE library is affected by multiple vulnerabilities related to the handling of regular...

10CVSS8.9AI score0.10997EPSS
Exploits4References12
Rows per page
Query Builder