php

756 tracked vulnerabilities.

CVE-2006-1990
PHP 4.4.2 and 5.1.2 - Heap-Based Buffer Overflow via wordwrap Function Integer Overflow
Apr 24, 2006
EPSS 0.01
CVE-2006-1991
PHP 5.1.2 - Denial of Service via substr_compare Offset Argument
Apr 24, 2006
EPSS 0.04
CVE-2006-1549
PHP 4.4.2 and 5.1.2 - Denial of Service via Recursive Function Execution
Apr 10, 2006
EPSS 0.00
CVE-2006-1494
PHP 4.4.2 and 5.1.2 - Directory Traversal via tempnam Function
Apr 10, 2006
EPSS 0.06
CVE-2006-1608
PHP 4.4.2 and 5.1.2 - Local Arbitrary File Read via compress.zlib:// URI in copy Function
Apr 10, 2006
EPSS 0.01
CVE-2006-0996
PHP phpinfo Long Array Variables - Cross-Site Scripting
Apr 10, 2006
EPSS 0.18
CVE-2006-1558
PHP Script Index - Cross-Site Scripting via Search Parameter
Mar 31, 2006
EPSS 0.01
CVE-2006-1559
PHP Script Index - SQL Injection via Search Parameter
Mar 31, 2006
EPSS 0.00
CVE-2006-1490
PHP - Information Disclosure via html_entity_decode Binary Data Handling
Mar 29, 2006
EPSS 0.31
CVE-2006-1014
PHP - Argument Injection via mb_send_mail Additional Parameters
Mar 07, 2006
EPSS 0.02
CVE-2006-1015
PHP - Argument Injection via Mail Function Additional Parameters
Mar 07, 2006
EPSS 0.08
CVE-2006-1017
c-client library <4.4.4-5.1.5 - Code Injection
Mar 07, 2006
EPSS 0.03
CVE-2006-0200
PHP 5.1.0-5.1.1 - Remote Code Execution via MySQL Error Message Format String Specifiers
Jan 13, 2006
EPSS 0.12
CVE-2006-0207
PHP 5.1.1 - HTTP Response Splitting via Set-Cookie Header
Jan 13, 2006
EPSS 0.05
CVE-2006-0208
PHP display_errors and html_errors - Cross-Site Scripting
Jan 13, 2006
EPSS 0.02
CVE-2006-0144
Apache2Triad - Remote Code Execution via Malicious Proxy Server Redirection
Jan 09, 2006
EPSS 0.01
CVE-2006-0097
PHP 4.3.10-4.4.2 - Stack-Based Buffer Overflow via mysql_connect Host Argument
Jan 06, 2006
EPSS 0.12
CVE-2005-4154
PEAR < 1.4.2 - Remote Code Execution via Crafted Package
Dec 11, 2005
EPSS 0.01
CVE-2005-3883
PHP < 5.1.0 - CRLF Injection via mb_send_mail To Address Argument
Nov 29, 2005
EPSS 0.03
CVE-2005-3353
PHP - Denial of Service via Malformed JPEG Image in Exif Module
Nov 18, 2005
EPSS 0.12
CVE-2005-3388
PHP 4.4.0 and 5.0.5 phpinfo - Cross-Site Scripting
Nov 01, 2005
EPSS 0.63
CVE-2005-3389
PHP 4.x up to 4.4.0 and 5.x up to 5.0.5 - Remote Code Execution via parse_str Function
Nov 01, 2005
EPSS 0.10
CVE-2005-3390
PHP 4.x-4.4.0 and 5.x-5.0.5 - Remote Code Execution via RFC1867 File Upload GLOBALS Overwrite
Nov 01, 2005
EPSS 0.65
CVE-2005-3391
PHP < 4.4.1 - Safe Mode and Open Basedir Restriction Bypass in CURL and GD Extensions
Nov 01, 2005
EPSS 0.19
CVE-2005-3392
PHP < 4.4.1 - Safe Mode and Open Basedir Bypass via Virtual Function
Nov 01, 2005
EPSS 0.10
Products
php 723 pear 5 archive_tar 4 frankenphp 2 pearweb 2 php_script_index 2 animated_smiley_generator 1 ar_memberscript 1 blog_cms 1 bloq 1 com_extensions 1 directory_listing_script 1 errordocs 1 ext-http 1 f1_maxs_file_uploader 1 imagick 1 memcached 1 mysql_banner_exchange 1 mysql_extension 1 pear_archive_tar 1 pecl_http 1 php_fi 1 phpsquidpass 1 xhprof 1 xml_rpc 1
Quick Filters
Critical CVEs With Exploits In CISA KEV