Описание
The money_format function in PHP 5 before 5.2.4, and PHP 4 before 4.4.8, permits multiple (1) %i and (2) %n tokens, which has unknown impact and attack vectors, possibly related to a format string vulnerability.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 5.1.2-1ubuntu3.10 |
| devel | not-affected | 5.2.4-2ubuntu3 |
| edgy | released | 5.1.6-1ubuntu2.7 |
| feisty | released | 5.2.1-0ubuntu1.5 |
| gutsy | released | 5.2.3-1ubuntu6.1 |
| upstream | released | 5.2.4 |
Показывать по
EPSS
7.5 High
CVSS2
Связанные уязвимости
The money_format function in PHP 5 before 5.2.4, and PHP 4 before 4.4.8, permits multiple (1) %i and (2) %n tokens, which has unknown impact and attack vectors, possibly related to a format string vulnerability.
The money_format function in PHP 5 before 5.2.4, and PHP 4 before 4.4.8, permits multiple (1) %i and (2) %n tokens, which has unknown impact and attack vectors, possibly related to a format string vulnerability.
The money_format function in PHP 5 before 5.2.4, and PHP 4 before 4.4. ...
The money_format function in PHP 5 before 5.2.4, and PHP 4 before 4.4.8, permits multiple (1) %i and (2) %n tokens, which has unknown impact and attack vectors, possibly related to a format string vulnerability.
EPSS
7.5 High
CVSS2