Lucene search
K

100 matches found

EUVD
EUVD
added 2019/03/08 11:0 p.m.3 views

EUVD-2019-19007

An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exifprocessIFDinMAKERNOTE because of mishandling the makernote-offset relationship to valuelen...

7.5CVSS7.1AI score0.06677EPSS
Exploits1References17
Cvelist
Cvelist
added 2019/02/22 11:0 p.m.27 views

CVE-2019-9022

An issue was discovered in PHP 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.2. dnsgetrecord misparses a DNS response, which can allow a hostile DNS server to cause PHP to misuse memcpy, leading to read operations going past the buffer allocated for DNS data. This affects phpparser...

8.5AI score0.04188EPSS
Exploits1References12
Debian CVE
Debian CVE
added 2019/02/22 11:0 p.m.45 views

CVE-2019-9023

Removed by vendor...

9.8CVSS8.7AI score0.09317EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2018/05/02 10:1 a.m.35 views

CVE-2018-10545

An issue was discovered in PHP before 5.6.35, 7.0.x before 7.0.29, 7.1.x before 7.1.16, and 7.2.x before 7.2.4. Dumpable FPM child processes allow bypassing opcache access controls because fpmunix.c makes a PRSETDUMPABLE prctl call, allowing one user in a multiuser environment to obtain sensitive...

4.7CVSS1.9AI score0.00831EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/04/29 9:0 p.m.46 views

CVE-2018-10549

An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. exifreaddata in ext/exif/exif.c has an out-of-bounds read for crafted JPEG data because exifiifaddvalue mishandles the case of a MakerNote that lacks a final '\0' character...

7.9AI score0.07159EPSS
Exploits0References13
NVD
NVD
added 2018/02/09 6:29 a.m.34 views

CVE-2016-10712

In PHP before 5.5.32, 5.6.x before 5.6.18, and 7.x before 7.0.3, all of the return values of streamgetmetadata can be controlled if the input can be controlled e.g., during file uploads. For example, a "$uri = streamgetmetadatafopen$file, "r"'uri'" call mishandles the case where $file is...

7.5CVSS8.6AI score0.02297EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2017/01/24 9:0 p.m.49 views

CVE-2016-10158

Removed by vendor...

7.5CVSS8.7AI score0.07827EPSS
Exploits0
0day.today
0day.today
added 2017/01/23 12:0 a.m.21 views

PHP 7.1.0 / 5.6.29 missing null byte checks for paths in exif_imagetype Vulnerability

Exploit for php platform in category dos / poc Description: ------------ exifimagetype doesn’t ensure that pathnames lack NULL byte, which might allow attacker to manipulate the file path. =============================================== Affected code: PHPFUNCTIONexifimagetype char imagefile; size...

7.4AI score
Exploits0
OSV
OSV
added 2016/09/17 9:59 p.m.13 views

CVE-2016-7411

ext/standard/varunserializer.re in PHP before 5.6.26 mishandles object-deserialization failures, which allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via an unserialize call that references a partially constructed object...

9.8CVSS9.3AI score
Exploits0References7
OSV
OSV
added 2016/08/07 10:59 a.m.17 views

CVE-2016-5094

Integer overflow in the phphtmlentities function in ext/standard/html.c in PHP before 5.5.36 and 5.6.x before 5.6.22 allows remote attackers to cause a denial of service or possibly have unspecified other impact by triggering a large output string from the htmlspecialchars function...

8.6CVSS7.8AI score
Exploits0References8
Debian CVE
Debian CVE
added 2016/07/25 2:0 p.m.40 views

CVE-2016-6291

Removed by vendor...

9.8CVSS8.7AI score0.05598EPSS
Exploits1
Cvelist
Cvelist
added 2016/05/22 1:0 a.m.23 views

CVE-2016-4544

The exifprocessTIFFinJPEG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not validate TIFF start data, which allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via crafted header data...

10AI score0.06689EPSS
Exploits1References13
Debian CVE
Debian CVE
added 2016/05/22 1:0 a.m.56 views

CVE-2016-4342

Removed by vendor...

8.8CVSS8.7AI score0.05345EPSS
Exploits2
NVD
NVD
added 2016/05/16 10:59 a.m.33 views

CVE-2015-4598

PHP before 5.4.42, 5.5.x before 5.5.26, and 5.6.x before 5.6.10 does not ensure that pathnames lack %00 sequences, which might allow remote attackers to read or write to arbitrary files via crafted input to an application that calls 1 a DOMDocument save method or 2 the GD imagepsloadfont function...

7.5CVSS8AI score0.03917EPSS
Exploits0References12
NVD
NVD
added 2016/05/16 10:59 a.m.20 views

CVE-2015-3411

PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 does not ensure that pathnames lack %00 sequences, which might allow remote attackers to read or write to arbitrary files via crafted input to an application that calls 1 a DOMDocument load method, 2 the xmlwriteropenuri function, 3 t...

6.5CVSS7.9AI score0.03439EPSS
Exploits1References10
Cvelist
Cvelist
added 2016/05/16 10:0 a.m.32 views

CVE-2015-3411

PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 does not ensure that pathnames lack %00 sequences, which might allow remote attackers to read or write to arbitrary files via crafted input to an application that calls 1 a DOMDocument load method, 2 the xmlwriteropenuri function, 3 t...

8AI score0.03439EPSS
Exploits1References10
UbuntuCve
UbuntuCve
added 2016/05/06 12:0 a.m.51 views

CVE-2016-4543

The exifprocessIFDinJPEG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not validate IFD sizes, which allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via crafted header data...

9.8CVSS7.2AI score0.12179EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2015/10/12 12:0 a.m.32 views

CVE-2015-7803

The phargetentrydata function in ext/phar/util.c in PHP before 5.5.30 and 5.6.x before 5.6.14 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a .phar file with a crafted TAR archive entry in which the Link indicator references a file that do...

6.8CVSS7.2AI score0.10288EPSS
Exploits0References2
Cvelist
Cvelist
added 2014/07/06 11:0 p.m.35 views

CVE-2014-4721

The phpinfo implementation in ext/standard/info.c in PHP before 5.4.30 and 5.5.x before 5.5.14 does not ensure use of the string data type for the PHPAUTHPW, PHPAUTHTYPE, PHPAUTHUSER, and PHPSELF variables, which might allow context-dependent attackers to obtain sensitive information from process...

8.3AI score0.05868EPSS
Exploits1References14
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

PHP 5.2.5 Multiple Functions 'safe_mode_exec_dir' and 'open_basedir' Restriction Bypass Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/31064/info PHP is prone to 'safemodeexecdir' and 'openbasedir' restriction-bypass vulnerabilities. Successful exploits could allow an attacker to execute arbitrary code. These vulnerabilities would be an issue in...

7.1AI score
Exploits0
Rows per page
Query Builder