php
756 tracked vulnerabilities.
CVE-2009-3293
PHP < 5.2.11 - Unspecified Vulnerability in imagecolortransparent
Sep 22, 2009
EPSS 0.02
CVE-2009-3292
PHP <5.2.11, 5.3.x <5.3.1 - Info Disclosure
Sep 22, 2009
EPSS 0.04
CVE-2009-3291
PHP < 5.2.11 - Certificate Validation Bypass in OpenSSL Verification Policy
Sep 22, 2009
EPSS 0.02
CVE-2009-2687
PHP < 5.2.10 - Denial of Service via Malformed JPEG Image in Exif Module
Aug 05, 2009
EPSS 0.10
CVE-2009-1272
PHP 5.2.x - Denial of Service via ZIP Filename Relative Path Handling
Apr 08, 2009
EPSS 0.02
CVE-2009-1271
PHP 5.2.x - Denial of Service via Malformed JSON String to json_decode
Apr 08, 2009
EPSS 0.10
CVE-2009-0754
PHP <4.4.4, <5.1.6 - Code Injection
Mar 03, 2009
EPSS 0.00
CVE-2008-7068
PHP 5.2.6 and 4.x - Denial of Service via dba_replace NULL Byte Key
Aug 25, 2009
EPSS 0.00
CVE-2008-7002
PHP 5.2.5 - Local Restriction Bypass via exec system shell_exec passthru popen Functions
Aug 19, 2009
EPSS 0.00
CVE-2008-5844
PHP 5.2.7 - Unintended magic_quotes_gpc Disabling
Jan 05, 2009
EPSS 0.00
CVE-2008-5814
PHP < 5.2.7 - Cross-Site Scripting when display_errors is Enabled
Jan 02, 2009
EPSS 0.01
CVE-2008-5498
PHP < 5.2.8 - Exposure of Sensitive Information via imageRotate Function
Dec 26, 2008
EPSS 0.10
CVE-2008-5557
PHP 4.3.0-5.2.6 - Heap-Based Buffer Overflow in mbstring HTML Entity Conversion
Dec 23, 2008
EPSS 0.30
CVE-2008-5658
PHP < 5.2.6 - Path Traversal and Arbitrary File Write via ZipArchive::extractTo
Dec 17, 2008
EPSS 0.02
CVE-2008-5625
PHP < 5.2.7 - Arbitrary File Write via .htaccess error_log Directive
Dec 17, 2008
EPSS 0.11
CVE-2008-5624
PHP 5 < 5.2.7 - Safe Mode Bypass via Uninitialized page_uid and page_gid Variables
Dec 17, 2008
EPSS 0.02
CVE-2008-4107
PHP 5.2.6 - Weak Random Number Generation in rand and mt_rand Functions
Sep 18, 2008
EPSS 0.10
CVE-2008-3658
PHP <4.4.9, <5.2.6-r6 - Buffer Overflow
Aug 15, 2008
EPSS 0.13
CVE-2008-3659
PHP <4.4.9 & 5.2.6-5.6 - Buffer Overflow
Aug 15, 2008
EPSS 0.16
CVE-2008-3660
PHP 4.4.x < 4.4.9 and 5.x <= 5.2.6 - Denial of Service via FastCGI Extension Handling
Aug 15, 2008
EPSS 0.14
CVE-2008-2371
PCRE 7.7 - Heap-Based Buffer Overflow in pcre_compile.c
Jul 07, 2008
EPSS 0.04
CVE-2008-2829
PHP < 4.4.9 - Denial of Service and Possible Remote Code Execution via Long IMAP Request
Jun 23, 2008
EPSS 0.10
CVE-2008-2665
PHP <= 5.2.6 - Directory Traversal via HTTP URL Canonicalization
Jun 20, 2008
EPSS 0.03
CVE-2008-2666
PHP < 5.2.6 - Directory Traversal via http URL Argument to chdir or ftok
Jun 20, 2008
EPSS 0.07
CVE-2008-2107
PHP 4.x < 4.4.8 and 5.x < 5.2.5 - Predictable Seed Generation in GENERATE_SEED Macro
May 07, 2008
EPSS 0.03
Products
php 723
pear 5
archive_tar 4
frankenphp 2
pearweb 2
php_script_index 2
animated_smiley_generator 1
ar_memberscript 1
blog_cms 1
bloq 1
com_extensions 1
directory_listing_script 1
errordocs 1
ext-http 1
f1_maxs_file_uploader 1
imagick 1
memcached 1
mysql_banner_exchange 1
mysql_extension 1
pear_archive_tar 1
pecl_http 1
php_fi 1
phpsquidpass 1
xhprof 1
xml_rpc 1
Quick Filters