php
758 tracked vulnerabilities.
CVE-2006-2563
PHP 4.4.2 and 5.1.4 - File Read via cURL Null Character Bypass
May 29, 2006
EPSS 0.00
CVE-2006-2419
Directory Listing Script - Cross-Site Scripting via dir Parameter
May 16, 2006
EPSS 0.01
CVE-2006-1990
PHP 4.4.2 and 5.1.2 - Heap-Based Buffer Overflow via wordwrap Function Integer Overflow
Apr 24, 2006
EPSS 0.08
CVE-2006-1991
PHP 5.1.2 - Denial of Service via substr_compare Offset Argument
Apr 24, 2006
EPSS 0.02
CVE-2006-1549
PHP 4.4.2 and 5.1.2 - Denial of Service via Recursive Function Execution
Apr 10, 2006
EPSS 0.01
CVE-2006-1494
PHP 4.4.2 and 5.1.2 - Directory Traversal via tempnam Function
Apr 10, 2006
EPSS 0.06
CVE-2006-1608
PHP 4.4.2 and 5.1.2 - Local Arbitrary File Read via compress.zlib:// URI in copy Function
Apr 10, 2006
EPSS 0.01
CVE-2006-0996
PHP phpinfo Long Array Variables - Cross-Site Scripting
Apr 10, 2006
EPSS 0.10
CVE-2006-1558
PHP Script Index - Cross-Site Scripting via Search Parameter
Mar 31, 2006
EPSS 0.01
CVE-2006-1559
PHP Script Index - SQL Injection via Search Parameter
Mar 31, 2006
EPSS 0.01
CVE-2006-1490
PHP - Information Disclosure via html_entity_decode Binary Data Handling
Mar 29, 2006
EPSS 0.21
CVE-2006-1014
PHP - Argument Injection via mb_send_mail Additional Parameters
Mar 07, 2006
EPSS 0.01
CVE-2006-1015
PHP - Argument Injection via Mail Function Additional Parameters
Mar 07, 2006
EPSS 0.11
CVE-2006-1017
c-client library <4.4.4-5.1.5 - Code Injection
Mar 07, 2006
EPSS 0.03
CVE-2006-0200
PHP 5.1.0-5.1.1 - Remote Code Execution via MySQL Error Message Format String Specifiers
Jan 13, 2006
EPSS 0.19
CVE-2006-0207
PHP 5.1.1 - HTTP Response Splitting via Set-Cookie Header
Jan 13, 2006
EPSS 0.04
CVE-2006-0208
PHP display_errors and html_errors - Cross-Site Scripting
Jan 13, 2006
EPSS 0.04
CVE-2006-0144
Apache2Triad - Remote Code Execution via Malicious Proxy Server Redirection
Jan 09, 2006
EPSS 0.02
CVE-2006-0097
PHP 4.3.10-4.4.2 - Stack-Based Buffer Overflow via mysql_connect Host Argument
Jan 06, 2006
EPSS 0.09
CVE-2005-4154
PEAR < 1.4.2 - Remote Code Execution via Crafted Package
Dec 11, 2005
EPSS 0.07
CVE-2005-3883
PHP < 5.1.0 - CRLF Injection via mb_send_mail To Address Argument
Nov 29, 2005
EPSS 0.03
CVE-2005-3353
PHP - Denial of Service via Malformed JPEG Image in Exif Module
Nov 18, 2005
EPSS 0.08
CVE-2005-3388
PHP 4.4.0 and 5.0.5 phpinfo - Cross-Site Scripting
Nov 01, 2005
EPSS 0.49
CVE-2005-3389
PHP 4.x up to 4.4.0 and 5.x up to 5.0.5 - Remote Code Execution via parse_str Function
Nov 01, 2005
EPSS 0.06
CVE-2005-3390
PHP 4.x-4.4.0 and 5.x-5.0.5 - Remote Code Execution via RFC1867 File Upload GLOBALS Overwrite
Nov 01, 2005
EPSS 0.66
Products
php 724
pear 5
archive_tar 4
frankenphp 3
pearweb 2
php_script_index 2
animated_smiley_generator 1
ar_memberscript 1
blog_cms 1
bloq 1
com_extensions 1
directory_listing_script 1
errordocs 1
ext-http 1
f1_maxs_file_uploader 1
imagick 1
memcached 1
mysql_banner_exchange 1
mysql_extension 1
pear_archive_tar 1
pecl_http 1
php_fi 1
phpsquidpass 1
xhprof 1
xml_rpc 1
Quick Filters