PHP 8.4.x < 8.4.16 Multiple Vulnerabilities

The version of PHP installed on the remote host is prior to 8.4.16. It is, therefore, affected by multiple vulnerabilities as referenced in the Version 8.4.16 advisory. - Debian Linux - php7.4 - None php8.2 - None php8.4 - None Ubuntu Linux - Unknown description CVE-2025-14177, CVE-2025-14178,...

PHP 5.4.x < 5.4.36 'process_nested_data' RCE

According to its banner, the version of PHP 5.4.x installed on the remote host is prior to 5.4.36. It is, therefore, affected by a use-after-free error in the 'processnesteddata' function within 'ext/standard/varunserializer.re' due to improper handling of duplicate keys within the serialized...

PHP 5.5.x < 5.5.14 Multiple Vulnerabilities

According to its banner, the version of PHP 5.5.x installed on the remote host is a version prior to 5.5.14. It is, therefore, affected by the following vulnerabilities : - Boundary checking errors exist related to the Fileinfo extension, Composite Document Format CDF handling and the functions...

PHP 5.5.x < 5.5.13 'src/cdf.c' Multiple Vulnerabilities

According to its banner, the version of PHP 5.5.x installed on the remote host is a version prior to 5.5.13. It is, therefore, affected by the following vulnerabilities : - A flaw exists with the 'cdfunpacksummaryinfo' function within 'src/cdf.c' where multiple fileprintf calls occur when handlin...