PHP Latest Vulnerabilities
Latest vulnerabilities published by php
Vulnerability Published:
๐๏ธ Published
- Anytime
Sort By:
๐๏ธ Published Date
- Descending
Use-After-Free Vulnerability in PHP Products by PHP Group
CVE-2024-11235PHP GroupPHP9.2CRITICALBuffer Limit Vulnerability in PHP Affects Multiple Versions
CVE-2025-1861PHP GroupPHP6.3MEDIUMInsufficient Validation of User-Supplied Headers in PHP
CVE-2025-1736PHP GroupPHP6.3MEDIUMInvalid Header Handling Vulnerability in PHP Products
CVE-2025-1734PHP GroupPHP6.3MEDIUMImproper Content-Type Handling in PHP Affecting Multiple Versions
CVE-2025-1219PHP GroupPHP๐พ๐ฐ6.3MEDIUMMalformed HTTP Response Vulnerability in PHP Products
CVE-2025-1217PHP GroupPHP6.3MEDIUMSQL Injection Vulnerability in PHPGurukul Human Metapneumovirus Testing Management System
CVE-2025-2373PHP GurukulHuman Metapneumovirus ...8.8HIGHSQL Injection Risk in PHP SQLite Driver for PHP Versions
CVE-2022-31631PHP GroupPHP9.1CRITICALPotential Security Vulnerability in PHP Streams with Configured Proxy and 'request_fulluri' Option
CVE-2024-11234PHPPHP7.2HIGHUncontrolled Long String Inputs to ldap_escape() Function on 32-bit Systems Can Cause Integer Overflow and Out-of-Bounds Write
CVE-2024-11236PHPPHP9.8CRITICALBuffer Overread Vulnerabilities in PHP Could Lead to Crashes or Memory Disclosure
CVE-2024-11233PHP GroupPHP8.2HIGHPHP Versions Before 8.3.14 Vulnerable to MySQL Server Attack
CVE-2024-8929PHP GroupPHP5.8MEDIUMUncontrolled Long String Inputs Can Cause Integer Overflow and Out-of-Bounds Write in PHP
CVE-2024-8932PHP GroupPHP9.8CRITICALVulnerability in PHP-FPM Allow Remote Attackers to Manipulate Log Messages and Remove Up to 4 Characters
CVE-2024-9026PHP GroupPHP3.3LOWHTTP_REDIRECT_STATUS variable manipulation can lead to arbitrary file inclusion in PHP
CVE-2024-8927PHP GroupPHP7.5HIGHCVE-2024-4577 Vulnerability in PHP Could Allow Command Injection and Source Code Revelation
CVE-2024-8926PHP GroupPHP8.8HIGHErroneous Parsing of Multipart Form Data in PHP Could Lead to Data Tampering
CVE-2024-8925PHP GroupPHP5.3MEDIUMSQL Injection Vulnerability in Daily Expenses Management System by PHP Gurukul
CVE-2024-29390PHP GurukulDaily Expenses Managem...7.3HIGHSQL Injection Vulnerability in Online Bookstore Project
CVE-2024-37848Online-Bookstore-...OpenSSL Private Decrypt Vulnerability
CVE-2024-2408PHP GroupPHP5.9MEDIUMPHP CGI Module Vulnerability Allows Malicious User to Reveal Source Code and Run Arbitrary PHP Code on Server
CVE-2024-4577PHP GroupPHP๐ฅ๐๐ฐ๐พ๐กEPSS 94%๐ฆ ๐ฐ9.8CRITICALTrailing spaces in command names can lead to arbitrary command execution in PHP
CVE-2024-5585PHP GroupPHP7.7HIGHPHP Versions Before 8.3.8 Vulnerable to URL Filtering Error
CVE-2024-5458PHP GroupPHP5.3MEDIUMSmarty Template Engine Vulnerability Affects Sites, Update ASAP
CVE-2024-35226Smarty-PHPSmarty7.3HIGHXSS Vulnerability in PHP Server Monitor 3.2.0
CVE-2024-5312PHP Server MonitorPHP Server Monitor6.3MEDIUM