CVE-2022-24637

Open Web Analytics OWA before 1.7.4 allows an unauthenticated remote attacker to obtain sensitive user information, which can be used to gain admin privileges by leveraging cache hashes. This occurs because files generated with '...

ROS-20241015-14

A vulnerability in the PHP programming language interpreter exists due to a failure to take measures to neutralize the special elements. Exploitation of the vulnerability could allow an attacker acting remotely to Affect the confidentiality, integrity, and availability of protected information...

The vulnerability of the php_stream_url_wrap_http_ex function in the PHP interpreter allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the phpstreamurlwraphttpex function located in ext/standard/httpfopenwrapper.c in the PHP interpreter arises due to an out-of-buffer operation on the stack. Exploitation of this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure by usi...

The vulnerability of the i_zval_ptr_dtor function in the PHP interpreter allows a attacker to cause a service failure or exert other effects.

The vulnerability of the izvalptrdtor function in the PHP interpreter is related to an uncontrolled resource consumption. Exploiting this vulnerability may allow a malicious actor to cause service failures or other effects such as memory consumption or termination of the application by using...

PHP Interpreter 3.0.x/4.0.x/4.1/4.2 - Direct Invocation Denial of Service

// source: https://www.securityfocus.com/bid/5280/info It is possible, under some circumstances, for remote attackers to invoke the PHP interpreter from the web. If the interpreter is invoked with no command line options, it will hang. Attackers may exploit this condition to cause a denial of...