CVE-2018-17082

The Apache2 component in PHP before 5.6.38, 7.0.x before 7.0.32, 7.1.x before 7.1.22, and 7.2.x before 7.2.10 allows XSS via the body of a "Transfer-Encoding: chunked" request, because the bucket brigade is mishandled in the phphandler function in sapi/apache2handler/sapiapache2.c...

CVE-2018-17082

Removed by vendor...

[Full-disclosure] php < 4.4.1 htaccess apache dos

Hello, Here under some stuff to dos apache + php just through an htaccess. With .htaccess method : If you have into your php.ini - safemode = On Simply put a .htaccess file on the root directory of your website with this content : phpvalue session.savepath /var/www/somewherehowexist Apache segfau...