SUSE CVE-2016-10397

In PHP before 5.6.28 and 7.x before 7.0.13, incorrect handling of various URI components in the URL parser could be used by attackers to bypass hostname-specific URL checks, as demonstrated by evil.example.com:[email protected]/ and evil.example.com:[email protected]/ inputs to the parseurl...

PT-2017-1613 · Zend Technologies +4 · Zend Opcache +6

Name of the Vulnerable Software and Affected Versions: PHP versions prior to 5.6.28 PHP versions prior to 7.0.13 Description: The issue exists due to inadequate access control when inheriting certain classes related to operational code in PHP configurations using apache2handler/mod php or php-fpm...

Oracle MySQL Server: InnoDB Subcomponent Denial of Service Vulnerability

Oracle MySQL is an open source relational database management system from Oracle. This database system is characterized by high performance, low cost and good reliability. A denial of service vulnerability exists in the Server: InnoDB subcomponent of Oracle MySQL versions 5.6.28 and earlier and...