CVE-2007-5898

Опубликовано: 20 нояб. 2007

Источник: debian

EPSS Низкий

Описание

The (1) htmlentities and (2) htmlspecialchars functions in PHP before 5.2.5 accept partial multibyte sequences, which has unknown impact and attack vectors, a different issue than CVE-2006-5465.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
php5	fixed	5.2.5-1		package

Примечания

http://cvs.php.net/viewvc.cgi/php-src/ext/standard/html.c?r1=1.111.2.2.2.14&r2=1.111.2.2.2.15&view=patch
fixed in php5/etch svn

EPSS

Процентиль: 86%

0.03206

Низкий

Связанные уязвимости

CVE-2007-5898

ubuntu

больше 17 лет назад

The (1) htmlentities and (2) htmlspecialchars functions in PHP before 5.2.5 accept partial multibyte sequences, which has unknown impact and attack vectors, a different issue than CVE-2006-5465.

CVE-2007-5898

redhat

больше 17 лет назад

The (1) htmlentities and (2) htmlspecialchars functions in PHP before 5.2.5 accept partial multibyte sequences, which has unknown impact and attack vectors, a different issue than CVE-2006-5465.

CVE-2007-5898

nvd

больше 17 лет назад

The (1) htmlentities and (2) htmlspecialchars functions in PHP before 5.2.5 accept partial multibyte sequences, which has unknown impact and attack vectors, a different issue than CVE-2006-5465.

GHSA-6gp5-g2h4-r5fv

github

около 3 лет назад

The (1) htmlentities and (2) htmlspecialchars functions in PHP before 5.2.5 accept partial multibyte sequences, which has unknown impact and attack vectors, a different issue than CVE-2006-5465.

ELSA-2008-0544

oracle-oval

почти 17 лет назад

ELSA-2008-0544: php security update (MODERATE)

EPSS

Процентиль: 86%

0.03206

Низкий