php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login

go to bug id or search bugs for

  Showing 1-30 of 392 Show Next 30 Entries »
ID# Date Last Modified Package Type Status PHP Version OS Summary Assigned
66321
(edit)		 2013-12-19 07:00 UTC 2016-05-14 15:15 UTC Zip Related Sec Bug Closed 5.4.23 Linux PHP ZipArchive::open() ze_obj->filename_len not real remi
69253
(edit)		 2015-03-18 03:54 UTC 2015-03-20 05:49 UTC Zip Related Sec Bug Closed 5.6.6 *nix ZIP Integer Overflow leads to writing past heap boundary stas
71923
(edit)		 2016-03-29 23:45 UTC 2016-04-27 06:34 UTC Zip Related Sec Bug Closed 7.0.5RC1   integer overflow in ZipArchive::getFrom* stas
72520
(edit)		 2016-06-30 06:55 UTC 2016-07-25 15:21 UTC Zip Related Sec Bug Closed 7.1Git-2016-06-30 (Git)   Stack-based buffer overflow vulnerability in php_stream_zip_opener stas
81420
(edit)		 2021-09-06 14:20 UTC 2021-09-21 04:36 UTC Zip Related Sec Bug Closed 7.3 Windows ZipArchive::extractTo may extract outside of destination dir stas
69782
(edit)		 2015-06-09 08:49 UTC 2015-09-09 10:11 UTC XSLT related Sec Bug Closed 5.6.9   NULL pointer dereference stas
70728
(edit)		 2015-10-16 16:46 UTC 2016-01-06 03:18 UTC XMLRPC-EPI related Sec Bug Closed Irrelevant * Type Confusion Vulnerability in PHP_to_XMLRPC_worker() jpauli
72606
(edit)		 2016-07-17 09:08 UTC 2016-07-25 15:21 UTC XMLRPC-EPI related Sec Bug Closed 5.5.37 All heap-buffer-overflow (write) simplestring_addn simplestring.c stas
77242
(edit)		 2018-12-05 13:26 UTC 2019-02-22 22:06 UTC XMLRPC-EPI related Sec Bug Closed 5.6.39 Linux heap out of bounds read in xmlrpc_decode() stas
77380
(edit)		 2018-12-30 19:44 UTC 2019-02-22 22:09 UTC XMLRPC-EPI related Sec Bug Closed 5.6.39 Linux Global out of bounds read in xmlrpc base64 code stas
54397
(edit)		 2011-03-26 18:27 UTC 2014-12-30 18:21 UTC Website problem Sec Bug Closed Irrelevant Irrelevant Several issues with in http://news.php.net bjori
69208
(edit)		 2015-03-09 17:40 UTC 2015-07-04 11:45 UTC Website problem Sec Bug Closed Irrelevant * SPF Misconfigurations danbrown
69888
(edit)		 2015-06-20 07:01 UTC 2020-05-05 11:49 UTC Website problem Sec Bug Closed Irrelevant   Wildcard php.net SSL certificate uses deprecated SHA-1 algorithm cmb
72237
(edit)		 2016-05-18 14:03 UTC 2017-10-17 14:27 UTC Website problem Sec Bug Closed Irrelevant n/a Wiki content is not properly secured cmb
72757
(edit)		 2016-08-05 03:40 UTC 2017-02-13 01:35 UTC Website problem Sec Bug Closed Irrelevant Irrelevant Full Path Disclosure in br.php.net mirror rasmus
73883
(edit)		 2017-01-06 19:28 UTC 2017-02-13 01:57 UTC Website problem Sec Bug Closed 7.1.0   Can't Download .zip due to Trojan ab
74238
(edit)		 2017-03-12 07:15 UTC 2017-10-16 03:05 UTC Website problem Sec Bug Closed Irrelevant   pt2.php.net subdomain takeover rasmus
75906
(edit)		 2018-02-01 17:45 UTC 2018-02-20 23:49 UTC Website problem Sec Bug Closed Irrelevant   php.net lists wrong GPG keys used to sign 7.1 releases stas
78558
(edit)		 2019-09-18 10:25 UTC 2019-09-18 12:46 UTC Website problem Sec Bug Closed 7.4.0RC1 mac os Information Exposure Through an Error Message cmb
70661
(edit)		 2015-10-07 17:08 UTC 2016-01-06 03:17 UTC WDDX related Sec Bug Closed Irrelevant * Use After Free Vulnerability in WDDX Packet Deserialization stas
70741
(edit)		 2015-10-19 14:36 UTC 2016-01-06 03:19 UTC WDDX related Sec Bug Closed Irrelevant * Session WDDX Packet Deserialization Type Confusion Vulnerability stas
71335
(edit)		 2016-01-11 12:45 UTC 2016-02-02 03:17 UTC WDDX related Sec Bug Closed 5.5.31 * Type Confusion in WDDX Packet Deserialization stas
71587
(edit)		 2016-02-14 10:35 UTC 2016-03-02 06:38 UTC WDDX related Sec Bug Closed 5.5.32 Linux, Unix Use-After-Free / Double-Free in WDDX Deserialize stas
72340
(edit)		 2016-06-06 06:26 UTC 2016-06-23 12:51 UTC WDDX related Sec Bug Closed 5.5.36 Ubuntu 16.04 x86_64 Double Free Courruption in wddx_deserialize stas
72749
(edit)		 2016-08-03 18:36 UTC 2016-09-05 15:28 UTC WDDX related Sec Bug Closed 5.6.24 * wddx_deserialize allows illegal memory access stas
72750
(edit)		 2016-08-03 19:51 UTC 2016-09-05 15:29 UTC WDDX related Sec Bug Closed 5.6.24 * wddx_deserialize null dereference stas
72790
(edit)		 2016-08-09 02:53 UTC 2016-09-05 15:29 UTC WDDX related Sec Bug Closed 5.6.24 * wddx_deserialize null dereference with invalid xml stas
72799
(edit)		 2016-08-10 04:29 UTC 2016-09-05 15:29 UTC WDDX related Sec Bug Closed 5.6.24 * wddx_deserialize null dereference in php_wddx_pop_element stas
72860
(edit)		 2016-08-16 22:42 UTC 2016-09-16 13:39 UTC WDDX related Sec Bug Closed 5.6.25 * wddx_deserialize use-after-free stas
73065
(edit)		 2016-09-12 02:30 UTC 2016-09-16 13:41 UTC WDDX related Sec Bug Closed 5.6.25 Ubuntu Out-Of-Bounds Read in php_wddx_push_element of wddx.c stas
  Showing 1-30 of 392 Show Next 30 Entries »
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved. 		Last updated: Sat May 18 01:01:33 2024 UTC