CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

85 matches found

UbuntuCve•added 2017/01/04 8:59 p.m.•383 views

CVE-2016-9138

PHP through 5.6.27 and 7.x through 7.0.12 mishandles property modification during wakeup processing, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted serialized data, as demonstrated by Exception::toString with DateInterval::wakeup...

9.8CVSS7.2AI score0.00788EPSS

Exploits0References4

Hacker One•added 2016/11/08 2:0 p.m.•16 views

Internet Bug Bounty: Use-after-free in ArrayObject Deserialization

The bug report at: https://bugs.php.net/bug.php?id=73144 The fix commit at: https://github.com/php/php-src/commit/f74d7d92c8bc1edc2505e0b58546217e9e1ecb40...

Hacker One•added 2016/11/07 8:36 a.m.•14 views

Internet Bug Bounty: Invalid memory access in spl_filesystem_dir_open function

https://bugs.php.net/bug.php?id=73316...

Hacker One•added 2016/11/07 4:7 a.m.•31 views

Internet Bug Bounty: Memory corruption due to missing check size in _php_math_number_format_ex()

The fix for this bug has been committed: https://bugs.php.net/bug.php?id=73424 Description: ------------ I have found some vulnerable code at phpmathnumberformatex function. phpmathnumberformatex function is an internal function which is called from numberformat function. numberformat function...

Hacker One•added 2016/11/07 2:5 a.m.•26 views

Internet Bug Bounty: Heap overflow due to integer overflow in bzdecompress() function

The fix for this bug has been committed: https://bugs.php.net/bug.php?id=73386 Description: ------------ I have found some vulnerable code at bzdecompress function in module Bzip2. bzdecompress function creates a new zendstring object to store decompressed data. The size of destination string...

Hacker One•added 2016/11/04 8:4 a.m.•15 views

Internet Bug Bounty: crash in get_icu_value_internal function

https://bugs.php.net/bug.php?id=73378...

Hacker One•added 2016/11/04 8:1 a.m.•20 views

Internet Bug Bounty: crash in gzcompress and 3 other compress functions

https://bugs.php.net/bug.php?id=73357...

Hacker One•added 2016/10/17 4:23 a.m.•12 views

Internet Bug Bounty: CachingIterator null dereference when convert to string

https://bugs.php.net/bug.php?id=73073 Please feel free to ask for more technical details if necessary. Thank you for your consideration...

Hacker One•added 2016/10/13 12:19 p.m.•23 views

Internet Bug Bounty: Stack Buffer Overflow in GD dynamicGetbuf

Stack-based buffer over flow in GD dynamicGetbuf - Vulnerable function: imagecreatefromstring - Bug has been reported: https://bugs.php.net/bug.php?id=73280 - Submitted a patch and accepted: https://github.com/php/php-src/commit/cc08cbc84d46933c1e9e0149633f1ed5d19e45e9 - Impact: Remotely...

Hacker One•added 2016/09/13 1:29 p.m.•18 views

Internet Bug Bounty: ldap_escape could produce string larger than 2Gb

https://bugs.php.net/bug.php?id=72975...

Hacker One•added 2016/09/13 5:18 a.m.•14 views

Internet Bug Bounty: integer overflow in fgetcsv caused heap corruption

Please check: https://bugs.php.net/bug.php?id=73045...

Hacker One•added 2016/09/13 5:17 a.m.•26 views

Internet Bug Bounty: integer overflow in fgets cause heap corruption

Please check: https://bugs.php.net/bug.php?id=73011...

Hacker One•added 2016/09/13 5:17 a.m.•22 views

Internet Bug Bounty: integer overflow in preg_quote caused heap corruption

Please check: https://bugs.php.net/bug.php?id=72895...

Hacker One•added 2016/09/13 5:13 a.m.•26 views

Internet Bug Bounty: integer overflow in pg_escape_string caused heap corruption

https://bugs.php.net/bug.php?id=72874...

Hacker One•added 2016/09/13 4:9 a.m.•26 views

Internet Bug Bounty: Out of bound when verify signature of tar phar in phar_parse_tarfile

https://bugs.php.net/bug.php?id=73035 There was a security code in pharparsetarfile if FAILURE == pharverifysignaturefp, phpstreamtellfp - size - 512, myphar-sigflags, buf + 8, size - 8, fname, &myphar-signature, &myphar-siglen, error if error char save = error; spprintferror, 4096, "phar error:...

Metasploit•added 2016/09/06 11:58 p.m.•15 views

SugarCRM REST Unserialize PHP Code Execution

This module exploits a PHP Object Injection vulnerability in SugarCRM CE 'SugarCRM REST Unserialize PHP Code Execution', 'Description' = %q This module exploits a PHP Object Injection vulnerability in SugarCRM CE 'EgiX', 'License' = MSFLICENSE, 'References' = 'URL', 'http...

Hacker One•added 2016/08/19 2:58 a.m.•36 views

Internet Bug Bounty: imagegammacorrect allows arbitrary write access

Upstream Bug --- 2016-08-02 03:46 UTC https://bugs.php.net/bug.php?id=72730 Summary -- imagegammacorrect accepts two gamma values, if they don't have the same sign then the palette colors will be assigned values bigger than 0xFF, later this values are used to calculate the transparent color using...

Hacker One•added 2016/08/18 1:6 a.m.•54 views

Internet Bug Bounty: Memory Leakage In exif_process_IFD_in_TIFF (CVE-2016-7128)

I found some vulnerable code that leads to the memory leak in exifprocessIFDinTIFF. Let take look at code chunk : if !ImageInfo-Thumbnail.data && ImageInfo-Thumbnail.offset && ImageInfo-Thumbnail.size && ImageInfo-readthumbnail ImageInfo-Thumbnail.data = safeemallocImageInfo-Thumbnail.size, 1, 0;...

5CVSS7.4AI score0.02186EPSS

Hacker One•added 2016/08/17 7:11 a.m.•23 views

Internet Bug Bounty: integer overflow in quoted_printable_encode caused heap corruption

Please check: https://bugs.php.net/bug.php?id=72848...

Hacker One•added 2016/08/17 7:10 a.m.•19 views

Internet Bug Bounty: Integer overflow lead to heap corruption in sql_regcase

Please check: https://bugs.php.net/bug.php?id=72838...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by