EUVD-2024-53508

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2017-11145

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, an error in the date extension's timelibmeridian parsing code could be used by attackers able t...

CVE-2024-57063

A prototype pollution in the lib function of php-date-formatter v1.3.6 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

org.webjars.bowergithub.xdan:datetimepicker (=2.5.20) potentially affected by CVE-2024-57063 via org.webjars.bowergithub.kartik-v:php-date-formatter (=1.3.6)

org.webjars.bowergithub.kartik-v:php-date-formatter MAVEN version =1.3.6 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.bowergithub.kartik-v:php-date-formatter and may be impacted: - org.webjars.bowergithub.xdan:datetimepicker =2.5.20 Sour...

org.webjars.bower:datetimepicker (>=2.4.7 <=2.5.20), org.webjars.bower:github-com-xdan-datetimepicker (=2.5.4) potentially affected by CVE-2024-57063 via org.webjars.bower:php-date-formatter (=1.3.5)

org.webjars.bower:php-date-formatter MAVEN version =1.3.5 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.bower:php-date-formatter and may be impacted: - org.webjars.bower:datetimepicker =2.4.7, =2.5.20 -...

org.webjars.npm:github-com-xdan-datetimepicker (=2.5.20), org.webjars.npm:jquery-datetimepicker (>=2.5.4 <=2.5.21) potentially affected by CVE-2024-57063 via org.webjars.npm:php-date-formatter (=1.3.6)

org.webjars.npm:php-date-formatter MAVEN version =1.3.6 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.npm:php-date-formatter and may be impacted: - org.webjars.npm:github-com-xdan-datetimepicker =2.5.20 -...

Prototype Pollution

Overview org.webjars.npm:php-date-formatter is an A Javascript datetime formatting and manipulation library using PHP date-time formats. Affected versions of this package are vulnerable to Prototype Pollution in php-date-formatter.js. Details Prototype Pollution is a vulnerability affecting...

Prototype Pollution

Overview org.webjars.bower:php-date-formatter is an A Javascript datetime formatting and manipulation library using PHP date-time formats. Affected versions of this package are vulnerable to Prototype Pollution in php-date-formatter.js. Details Prototype Pollution is a vulnerability affecting...

Prototype Pollution

Overview org.webjars.bowergithub.kartik-v:php-date-formatter is an A Javascript datetime formatting and manipulation library using PHP date-time formats. Affected versions of this package are vulnerable to Prototype Pollution in php-date-formatter.js. Details Prototype Pollution is a vulnerabilit...

CVE-2024-57063

A prototype pollution in the lib function of php-date-formatter v1.3.6 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

CVE-2024-57063

A prototype pollution in the lib function of php-date-formatter v1.3.6 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

CVE-2024-57063

A prototype pollution in the lib function of php-date-formatter v1.3.6 allows attackers to cause a Denial of Service DoS via supplying a crafted payload...

CVE-2024-57063

CVE-2024-57063 pertains to a prototype pollution vulnerability in the PHP package php-date-formatter (v1.3.6) where the lib function can be polluted via a crafted payload, causing a Denial of Service. The issue is documented across multiple sources (NVD/NVD-derived entries, Red Hat, CVE listings)...

SUSE CVE-2015-0273

Multiple use-after-free vulnerabilities in ext/date/phpdate.c in PHP before 5.4.38, 5.5.x before 5.5.22, and 5.6.x before 5.6.6 allow remote attackers to execute arbitrary code via crafted serialized input containing a 1 R or 2 r type specifier in a DateTimeZone data handled by the...

CVE-2017-16642

In PHP before 5.6.32, 7.x before 7.0.25, and 7.1.x before 7.1.11, an error in the date extension's timelibmeridian handling of 'front of' and 'back of' directives could be used by attackers able to supply date strings to leak information from the interpreter, related to ext/date/lib/parsedate.c...

The vulnerability of the PHP interpreter, which allows a remote attacker to execute arbitrary code

The multiple vulnerabilities of the PHP interpreter are located in the ext/date/phpdate.c component. These vulnerabilities involve the use of memory after it has been freed. As a result of exploiting these vulnerabilities by a malicious actor operating remotely, arbitrary code can be executed usi...