php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login

go to bug id or search bugs for

  Showing 1-30 of 392 Show Next 30 Entries »
ID# Date Last Modified Package Type Status PHP Version OS Summary Assigned
55856
(edit)		 2011-10-06 05:03 UTC 2014-02-20 22:23 UTC PCRE related Sec Bug Closed 5.4.0beta1 All preg_replace should fail on trailing garbage yohgaki
68598
(edit)		 2014-12-12 22:51 UTC 2015-05-19 11:22 UTC PCNTL related Sec Bug Closed Irrelevant ANY pcntl_exec() should not allow null char yohgaki
68970
(edit)		 2015-02-02 02:42 UTC 2017-06-20 06:13 UTC Output Control Sec Bug Closed any any output_add_rewrite_var() add session ID path begins with "//" yohgaki
68079
(edit)		 2014-09-22 21:01 UTC 2014-09-29 16:29 UTC Online Doc Editor problem Sec Bug Closed Irrelevant - XSS in Online Documentation Editor yannick
54682
(edit)		 2011-05-07 01:13 UTC 2012-02-07 20:49 UTC Tidy Sec Bug Closed 5 * tidy NullPD tony2001
68552
(edit)		 2014-12-05 13:15 UTC 2015-03-18 12:11 UTC Reproducible crash Sec Bug Closed 5.6.3 Ubuntu 14.04.1 LTS 32bit heap buffer overflow in enchant_broker_request_dict() tony2001
54238
(edit)		 2011-03-13 02:29 UTC 2011-04-13 08:34 UTC Strings related Sec Bug Closed Irrelevant Linux use-after-free in substr_replace() stas
55871
(edit)		 2011-10-08 09:38 UTC 2015-04-26 12:52 UTC Strings related Sec Bug Closed 5.3 * Interruption in substr_replace() stas
60150
(edit)		 2011-10-27 16:37 UTC 2011-11-28 22:39 UTC EXIF related Sec Bug Closed 5.4.0beta2 All 32 bits Integer overflow during the parsing of invalid exif header stas
60262
(edit)		 2011-11-11 11:46 UTC 2018-12-18 01:27 UTC *General Issues Sec Bug Closed 5.4.0RC1   multiple flaws memory_limit bypass, dos, code exec stas
61065
(edit)		 2012-02-12 21:43 UTC 2014-06-19 16:31 UTC PHAR related Sec Bug Closed 5.3.10 All Secunia SA44335 - arbitrary code execution stas
61807
(edit)		 2012-04-22 01:12 UTC 2013-02-23 11:44 UTC CGI/CLI related Sec Bug Closed 5.4.1RC2 any Buffer Overflow in apache_request_headers stas
64879
(edit)		 2013-05-20 08:53 UTC 2013-06-08 09:17 UTC Strings related Sec Bug Closed 5.3.25 * Heap based buffer overflow in quoted_printable_encode stas
67060
(edit)		 2014-04-12 21:32 UTC 2014-05-02 06:57 UTC FPM related Sec Bug Closed 5.6Git-2014-04-12 (Git) *nix sapi/fpm: possible privilege escalation due to insecure default configuration stas
67249
(edit)		 2014-05-12 01:35 UTC 2014-05-27 19:21 UTC *General Issues Sec Bug Closed 5.4.28 * printf out-of-bounds read stas
67397
(edit)		 2014-06-08 10:39 UTC 2014-06-27 23:16 UTC Unicode Engine related Sec Bug Closed 5.5.13 Linux Buffer overflow in locale_get_display_name->uloc_getDisplayName (libicu 4.8.1) stas
67492
(edit)		 2014-06-22 02:01 UTC 2014-06-27 23:17 UTC Reproducible crash Sec Bug Closed 5.4.29 * unserialize() SPL ArrayObject / SPLObjectStorage Type Confusion stas
67498
(edit)		 2014-06-23 07:13 UTC 2016-04-30 20:58 UTC Reproducible crash Sec Bug Closed 5.4.29   phpinfo() Type Confusion Information Leak Vulnerability stas
67730
(edit)		 2014-07-31 20:37 UTC 2014-08-19 08:35 UTC GD related Sec Bug Closed 5.6.0RC2 All CVE-2014-5120 Null byte injection possible with imagexxx functions stas
68594
(edit)		 2014-12-12 03:21 UTC 2014-12-19 09:44 UTC *Data Exchange functions Sec Bug Closed 5.4.35 * Use after free vulnerability in unserialize() stas
68618
(edit)		 2014-12-17 21:24 UTC 2015-01-20 20:00 UTC Reproducible crash Sec Bug Closed master-Git-2014-12-17 (Git) Debian 7 out of bounds read crashes php-cgi stas
68710
(edit)		 2015-01-01 22:35 UTC 2015-02-10 15:27 UTC Reproducible crash Sec Bug Closed 5.4Git-2015-01-01 (Git) * Use After Free Vulnerability in PHP's unserialize() (Still Exploitable) stas
68834
(edit)		 2015-01-15 05:36 UTC 2015-03-20 05:49 UTC mbstring related Sec Bug Closed master-Git-2015-01-15 (Git) Linux Ubuntu 14.04 Off-by-one out-of-bounds write stas
68925
(edit)		 2015-01-27 21:34 UTC 2015-02-01 03:17 UTC Network related Sec Bug Closed 5.4.37 Linux glibc > 2.2 CVE-2015-0235 – GHOST: glibc gethostbyname buffer overflow stas
68976
(edit)		 2015-02-03 06:18 UTC 2015-03-31 05:51 UTC *General Issues Sec Bug Closed 5.6.5 * Use After Free Vulnerability in unserialize() stas
68978
(edit)		 2015-02-03 10:46 UTC 2015-02-06 04:25 UTC HTTP related Sec Bug Closed Irrelevant   XSS in header() with Internet Explorer stas
69152
(edit)		 2015-03-01 13:19 UTC 2016-02-11 13:33 UTC SOAP related Sec Bug Closed 5.6.6 * Type Confusion Infoleak Vulnerability in unserialize() with SoapFault stas
69133
(edit)		 2015-02-27 04:24 UTC 2015-03-17 23:54 UTC Date/time related Sec Bug Closed 5.4.38 * Use after free vulnerability in unserialize() with DateInterval stas
69218
(edit)		 2015-03-11 09:17 UTC 2015-04-17 20:54 UTC Apache2 related Sec Bug Closed 5.6.7RC1 linux potential remote code execution with apache 2.4 apache2handler stas
69248
(edit)		 2015-03-17 12:42 UTC 2015-03-18 12:08 UTC Regexps related Sec Bug Closed 5.6.6 SLES/ openSUSE heap overflow vulnerability in regcomp.c stas
  Showing 1-30 of 392 Show Next 30 Entries »
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved. 		Last updated: Sat May 18 05:01:31 2024 UTC