Lucene search
K

186 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-3033

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.01022EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.20 views

EUVD-2023-2470

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01877EPSS
Exploits1References7
OSV
OSV
added 2025/09/26 1:23 p.m.7 views

CLSA-2025-1758892982 php: Fix of CVE-2017-9228

CVE-2017-9228: fix heap out-of-bounds write in bitsetsetrange and parsecharclass functions...

9.8CVSS5.8AI score0.06261EPSS
Exploits1References1
OSV
OSV
added 2025/09/26 1:23 p.m.9 views

CLSA-2025-1758892974 php: Fix of CVE-2017-9228

CVE-2017-9228: fix heap out-of-bounds write in bitsetsetrange and parsecharclass functions...

9.8CVSS6.9AI score0.06261EPSS
Exploits1References1
OSV
OSV
added 2025/09/16 10:57 a.m.8 views

CLSA-2025-1758020272 Update of alt-php

Bump ABI 5.4.0-221...

5.8AI score
Exploits0References1
OSV
OSV
added 2025/09/15 2:48 p.m.6 views

CLSA-2025-1757947715 php: Fix of 3 CVEs

CVE-2017-9224: fix out-of-bounds read of a stack in matchat function - CVE-2017-9226: fix out-of-bounds write or read of a heap in nextstateval function - CVE-2017-9227: fix out-of-bounds read of a stack in mbcenclen function...

9.8CVSS6.8AI score0.07511EPSS
Exploits3References1
OSV
OSV
added 2025/08/27 7:45 p.m.5 views

CLSA-2025-1756323917 php: Fix of CVE-2025-1736

CVE-2025-1736: fix incorrect validation of CRLF in http headers...

7.3CVSS6.7AI score0.00531EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2021-32708

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Flysystem is an open source file storage library for PHP. The whitespace normalisation using in 1.x and 2.x removes any unicode whitespace. Under certain specif...

9.8CVSS7.3AI score0.03486EPSS
Exploits2References2
OSV
OSV
added 2025/08/05 9:6 a.m.4 views

CLSA-2025-1754384758 php: Fix of CVE-2025-6491

CVE-2025-6491: fix buffer overflow vulnerability...

5.9CVSS7.1AI score0.00944EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/08/05 12:12 a.m.5 views

CVE-2025-54119 ADOdb's sqlite3 driver allows SQL injection

ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. In versions 5.22.9 and below, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a sqlite3 database a...

10CVSS8.3AI score0.00463EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/08/05 12:0 a.m.3 views

ADOdb SQL注入漏洞

ADOdb is a PHP database library in ADOdb open source. A SQL injection vulnerability exists in ADOdb 5.22.9 and earlier versions, which stems from improper query parameter escaping and can lead to SQL injection attacks...

10CVSS7.5AI score0.00463EPSS
Exploits0References3
OSV
OSV
added 2025/07/31 10:10 a.m.8 views

CLSA-2025-1753953101 php: Fix of CVE-2025-1735

CVE-2025-1735: add error checking for pgsql extension escape functions, mainly to fix possible issues with multi-byte encoding of Postgres databases...

7.5CVSS6.4AI score0.00953EPSS
Exploits0References1
OSV
OSV
added 2025/07/29 5:58 a.m.7 views

CLSA-2025-1753768680 php: Fix of CVE-2025-1220

CVE-2025-1220: error if host contains null bytes in the middle of the string...

5.3CVSS5.9AI score0.00514EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:22 a.m.6 views

CVE-2024-41811

ipl/web is a set of common web components for php projects. Some of the recent development by Icinga is, under certain circumstances, susceptible to cross site request forgery. CSRF. All affected products, in any version, will be unaffected by this once icinga-php-library is upgraded. Version...

3.9CVSS6.4AI score0.00172EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 8:8 a.m.9 views

CVE-2024-45046

PHPSpreadsheet is a pure PHP library for reading and writing spreadsheet files. In affected versions \PhpOffice\PhpSpreadsheet\Writer\Html doesn't sanitize spreadsheet styling information such as font names, allowing an attacker to inject arbitrary JavaScript on the page. As a result an attacker...

5.4CVSS6.4AI score0.00395EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:45 a.m.6 views

CVE-2024-28864

SecureProps is a PHP library designed to simplify the encryption and decryption of property data in objects. A vulnerability in SecureProps version 1.2.0 and 1.2.1 involves a regex failing to detect tags during decryption of encrypted data. This occurs when the encrypted data has been encoded wit...

2.6CVSS6.8AI score0.00328EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:57 a.m.6 views

CVE-2024-56411

PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Versions prior to 3.7.0, 2.3.5, 2.1.6, and 1.29.7 have a cross-site scripting XSS vulnerability of the hyperlink base in the HTML page header. The HTML page is formed without sanitizing the hyperlink base. Versions 3.7.0,...

5.4CVSS5.6AI score0.00346EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:36 a.m.10 views

CVE-2023-41330

knplabs/knp-snappy is a PHP library allowing thumbnail, snapshot or PDF generation from a url or a html page. Issue On March 17th the vulnerability CVE-2023-28115 was disclosed, allowing an attacker to gain remote code execution through PHAR deserialization. Version 1.4.2 added a check if...

9.8CVSS7.9AI score0.0276EPSS
Exploits2
OSV
OSV
added 2025/05/20 11:36 a.m.5 views

CLSA-2025-1747740986 php: Fix of 3 CVEs

CVE-2025-1217: fix handling of folded headers by the http stream parser - CVE-2025-1734: fix validation of http headers with missing colon - CVE-2025-1861: fix incorrect http redirect location truncation...

9.8CVSS5.8AI score0.00821EPSS
Exploits1References1
OSV
OSV
added 2025/05/19 9:40 p.m.8 views

CLSA-2025-1747690840 php: Fix of 3 CVEs

CVE-2025-1217: fix handling of folded headers by the http stream parser - CVE-2025-1734: fix validation of http headers with missing colon - CVE-2025-1861: fix incorrect http redirect location truncation...

9.8CVSS6.4AI score0.00821EPSS
Exploits1References1
Rows per page
Query Builder