Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Php GroupPhp

3 matches found

CVE
CVEadded 2006/06/14 11:0 p.m.68 views

CVE-2006-3016

CVE-2006-3016 is a PHP vulnerability in the session handling code (session.c) that could allow a remote attacker to trigger a cross-site scripting or HTTP response splitting attack by supplying a crafted session identifier. The issue is associated with using non-alphanumeric session names and is ...

9.3CVSS6.4AI score0.0674EPSS
CVE
CVEadded 2006/06/14 11:0 p.m.59 views

CVE-2006-3018

CVE-2006-3018 affects PHP before 5.1.3, with unknown impact and heap-corruption in the session extension. Affected product: PHP 5.1.x prior to 5.1.3. Public details describe an unspecified vulnerability in session handling, but exploitation vectors/impact are not fully disclosed in the provided d...

7.5CVSS6.4AI score0.01171EPSS
CVE
CVEadded 2007/05/24 1:29 a.m.55 views

CVE-2006-7205

CVE-2006-7205 affects PHP 4.4.2 and 5.1.2. The array_fill function in ext/standard/array.c can be abused by a large num value to cause a denial of service via memory consumption. The provided documents do not specify exploit details or a remediation. If present in your environment, verify version...

5CVSS6.3AI score0.00588EPSS