php

756 tracked vulnerabilities.

CVE-2006-6590
AR Memberscript - Remote File Inclusion via script_folder Parameter
Dec 15, 2006
EPSS 0.06
CVE-2006-6592
Bloq 0.5.4 - Remote File Inclusion via page[path] Parameter
Dec 15, 2006
EPSS 0.02
CVE-2006-6552
BLOG:CMS <= 4.1.3 - Remote File Inclusion via DIR_ADMIN Parameter
Dec 14, 2006
EPSS 0.10
CVE-2006-6541
Animated Smiley Generator - Remote File Inclusion via Smiley Parameter
Dec 14, 2006
EPSS 0.01
CVE-2006-6545
PHP ErrorDocs 1.0.0 - Remote File Inclusion via module_root_path Parameter
Dec 14, 2006
EPSS 0.06
CVE-2006-6383
PHP 5.2.0 and 4.4 - Local Restriction Bypass via Null Byte in session_save_path
Dec 10, 2006
EPSS 0.01
CVE-2006-5706
PHP < 5.2.0 - Local open_basedir Restriction Bypass via chdir and tempnam Functions
Nov 04, 2006
EPSS 0.00
CVE-2006-5465
PHP < 5.2.0 - Remote Code Execution via UTF-8 Buffer Overflow in htmlentities/htmlspecialchars
Nov 04, 2006
EPSS 0.42
CVE-2006-4812
PHP 4 < 4.3.0 and 5 <= 5.1.6 - Remote Code Execution via Unserialize Integer Overflow
Oct 10, 2006
EPSS 0.39
CVE-2006-5178
PHP < 5.1.6 - Race Condition in Symlink Function
Oct 10, 2006
EPSS 0.00
CVE-2006-4625
PHP 4.x-4.4.4 and 5-5.1.6 - Local Security Restriction Bypass via ini_restore Function
Sep 12, 2006
EPSS 0.00
CVE-2006-4481
PHP - Safe Mode and Open Basedir Bypass via file_exists and imap_reopen Functions
Aug 31, 2006
EPSS 0.00
CVE-2006-4482
PHP < 5.1.5 - Heap-Based Buffer Overflow in str_repeat and wordwrap Functions
Aug 31, 2006
EPSS 0.04
CVE-2006-4483
PHP < 5.1.5 - Missing Authorization for CURLOPT_FOLLOWLOCATION with open_basedir or safe_mode
Aug 31, 2006
EPSS 0.01
CVE-2006-4484
PHP - Buffer Overflow in GD Extension GIF Parser
Aug 31, 2006
EPSS 0.06
CVE-2006-4485
PHP - Out-of-Bounds Read in stripos Function
Aug 31, 2006
EPSS 0.02
CVE-2006-4486
PHP - Memory Limit Bypass via Integer Overflow in Memory Allocation
Aug 31, 2006
EPSS 0.01
CVE-2006-4433
PHP <4.4.3 & 5.x <5.1.4 - Code Injection
Aug 29, 2006
EPSS 0.03
CVE-2006-4023
PHP <= 5.1.4 - Incorrect IP Address Validation via ip2long Function
Aug 09, 2006
EPSS 0.00
CVE-2006-4020
PHP <5.1.4 & <4.4.3 - Buffer Overflow
Aug 08, 2006
EPSS 0.06
CVE-2006-3011
PHP < 4.4.4 and 5.x < 5.1.5 - Safe Mode Bypass via error_log Scheme Injection
Jun 26, 2006
EPSS 0.00
CVE-2006-3017
PHP <4.4.3 and 5.x <5.1.3 - Use After Free
Jun 14, 2006
EPSS 0.05
CVE-2006-2660
PHP 5.1.4 and 4.x < 4.4.3 - Local File Creation via tempnam Pathname Length Bypass
Jun 13, 2006
EPSS 0.00
CVE-2006-2563
PHP 4.4.2 and 5.1.4 - File Read via cURL Null Character Bypass
May 29, 2006
EPSS 0.00
CVE-2006-2419
Directory Listing Script - Cross-Site Scripting via dir Parameter
May 16, 2006
EPSS 0.00
Products
php 723 pear 5 archive_tar 4 frankenphp 2 pearweb 2 php_script_index 2 animated_smiley_generator 1 ar_memberscript 1 blog_cms 1 bloq 1 com_extensions 1 directory_listing_script 1 errordocs 1 ext-http 1 f1_maxs_file_uploader 1 imagick 1 memcached 1 mysql_banner_exchange 1 mysql_extension 1 pear_archive_tar 1 pecl_http 1 php_fi 1 phpsquidpass 1 xhprof 1 xml_rpc 1
Quick Filters
Critical CVEs With Exploits In CISA KEV