php

756 tracked vulnerabilities.

CVE-2015-2305
rxspencer alpha3.8.g5 - Integer Overflow via Large Regular Expression
Mar 30, 2015
EPSS 0.22
CVE-2015-2301
Canonical Ubuntu Linux < 5.4.40 - Use After Free
Mar 30, 2015
EPSS 0.11
CVE-2015-1352
PHP <5.6.7 - Denial of Service
Mar 30, 2015
EPSS 0.20
CVE-2015-1351
PHP <5.6.8 - Use After Free
Mar 30, 2015
EPSS 0.12
CVE-2015-0273
PHP < 5.4.38, 5.5.x < 5.5.22, 5.6.x < 5.6.6 - Use-After-Free via Crafted Serialized DateTime Data
Mar 30, 2015
EPSS 0.61
CVE-2015-0235
Exim GHOST (glibc gethostbyname) Buffer Overflow
Jan 28, 2015
EPSS 0.85
CVE-2015-0232
PHP < 5.4.37 - Remote Code Execution via Crafted EXIF Data in JPEG Image
Jan 27, 2015
EPSS 0.67
CVE-2015-0231
PHP < 5.4.37 - Use-After-Free via Unserialize Duplicate Numerical Keys
Jan 27, 2015
EPSS 0.87
CVE-2014-3622 CRITICAL
PHP 5.6.0 - Use-After-Free in Posthandler Component
Feb 19, 2020
CVSS 9.8
EPSS 0.02
CVE-2014-9912 CRITICAL
PHP < 5.3.29, 5.4.x < 5.4.30, 5.5.x < 5.5.14 - Buffer Overflow via locale_get_display_name
Jan 04, 2017
CVSS 9.8
EPSS 0.01
CVE-2014-9767 MEDIUM
PHP <5.4.45, 5.5.x <5.5.29, 5.6.x <5.6.13 - Path Traversal
May 22, 2016
CVSS 4.3
EPSS 0.00
CVE-2014-0236 HIGH
PHP < 5.6.0 - Denial of Service via Zero Root Storage Value in CDF File
May 16, 2016
CVSS 7.5
EPSS 0.01
CVE-2014-9709
PHP < 5.5.21 and 5.6.x < 5.6.5 - Denial of Service via Crafted GIF Image Handling
Mar 30, 2015
EPSS 0.12
CVE-2014-9705
PHP < 5.4.37 - Heap-based Buffer Overflow in enchant_broker_request_dict
Mar 30, 2015
EPSS 0.27
CVE-2014-9653
PHP <5.4.37, 5.5.x <5.5.21, 5.6.x <5.6.5 - DoS
Mar 30, 2015
EPSS 0.07
CVE-2014-9652
PHP < 5.4.37 - Denial of Service via mconvert Function in softmagic.c
Mar 30, 2015
EPSS 0.07
CVE-2014-9427
PHP <5.4.36, 5.5.x<5.5.20, 5.6.x<5.6.4 - Info Disclosure
Jan 03, 2015
EPSS 0.03
CVE-2014-9426 HIGH
PHP < 5.6.4 - Denial of Service via Fileinfo Component Memory Corruption
Dec 31, 2014
CVSS 7.3
EPSS 0.01
CVE-2014-9425
PHP <5.5.21, <5.6.5 - Use After Free
Dec 31, 2014
EPSS 0.19
CVE-2014-8142
PHP < 5.4.36, 5.5.x < 5.5.20, 5.6.x < 5.6.4 - Use-After-Free via Unserialize Duplicate Keys
Dec 20, 2014
EPSS 0.88
CVE-2014-8626
PHP < 5.2.7 - Stack-Based Buffer Overflow in date_from_ISO8601
Nov 23, 2014
EPSS 0.04
CVE-2014-3710
PHP 5.4.34 - Denial of Service via Crafted ELF File in Fileinfo Component
Nov 05, 2014
EPSS 0.08
CVE-2014-3670
PHP < 5.4.34 - Heap Memory Corruption via EXIF Thumbnail Processing
Oct 29, 2014
EPSS 0.35
CVE-2014-3669
PHP < 5.4.34, 5.5.x < 5.5.18, 5.6.x < 5.6.2 - Remote Code Execution via Unserialize Integer Overflow
Oct 29, 2014
EPSS 0.56
CVE-2014-3668
PHP < 5.4.34 - Buffer Overflow in XMLRPC Extension via Crafted Arguments
Oct 29, 2014
EPSS 0.01
Products
php 723 pear 5 archive_tar 4 frankenphp 2 pearweb 2 php_script_index 2 animated_smiley_generator 1 ar_memberscript 1 blog_cms 1 bloq 1 com_extensions 1 directory_listing_script 1 errordocs 1 ext-http 1 f1_maxs_file_uploader 1 imagick 1 memcached 1 mysql_banner_exchange 1 mysql_extension 1 pear_archive_tar 1 pecl_http 1 php_fi 1 phpsquidpass 1 xhprof 1 xml_rpc 1
Quick Filters
Critical CVEs With Exploits In CISA KEV