exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 22

BDU:2022-02394

около 4 лет назад

Уязвимость функции simplexml_load_file() интерпретатора PHP , позволяющая нарушителю получить несанкционированный доступ к защищаемой информации

CVSS3: 5.3

EPSS: Низкий

CVE-2021-21707

около 4 лет назад

In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below 8.0.13, certain XML parsing functions, like simplexml_load_file(), URL-decode the filename passed to them. If that filename contains URL-encoded NUL character, this may cause the function to interpret this as the end of the filename, thus interpreting the filename differently from what the user intended, which may lead it to reading a different file than intended.

CVSS3: 5.3

EPSS: Низкий

CVE-2021-21707

около 4 лет назад

CVSS3: 5.3

EPSS: Низкий

CVE-2021-21707

около 4 лет назад

CVSS3: 5.3

EPSS: Низкий

CVE-2021-21707

2 месяца назад

Special characters break path parsing in XML functions

CVSS3: 5.3

EPSS: Низкий

CVE-2021-21707

около 4 лет назад

In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below ...

CVSS3: 5.3

EPSS: Низкий

SUSE-SU-2021:3927-1

около 4 лет назад

Security update for php74

EPSS: Низкий

GHSA-qh78-qfw9-93x9

около 4 лет назад

CVSS3: 5.3

EPSS: Низкий

openSUSE-SU-2021:3943-1

около 4 лет назад

Recommended update for php7

EPSS: Низкий

openSUSE-SU-2021:1570-1

около 4 лет назад

Recommended update for php7

EPSS: Низкий

SUSE-SU-2021:3943-1

около 4 лет назад

Recommended update for php7

EPSS: Низкий

SUSE-SU-2022:2303-1

больше 3 лет назад

Security update for php8

EPSS: Низкий

SUSE-SU-2022:2292-1

больше 3 лет назад

Security update for php7

EPSS: Низкий

SUSE-SU-2022:0577-1

почти 4 года назад

Security update for php72

EPSS: Низкий

RLSA-2022:7628

около 3 лет назад

Moderate: php:7.4 security, bug fix, and enhancement update

EPSS: Низкий

ELSA-2022-7628

около 3 лет назад

ELSA-2022-7628: php:7.4 security, bug fix, and enhancement update (MODERATE)

EPSS: Низкий

openSUSE-SU-2022:0679-1

почти 4 года назад

Security update for php7

EPSS: Низкий

SUSE-SU-2022:0679-1

почти 4 года назад

Security update for php7

EPSS: Низкий

SUSE-SU-2022:3997-1

около 3 лет назад

Security update for php7

EPSS: Низкий

SUSE-SU-2022:4069-1

около 3 лет назад

Security update for php7

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
BDU:2022-02394 Уязвимость функции simplexml_load_file() интерпретатора PHP , позволяющая нарушителю получить несанкционированный доступ к защищаемой информации	CVSS3: 5.3	1% Низкий	около 4 лет назад
CVE-2021-21707 In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below 8.0.13, certain XML parsing functions, like simplexml_load_file(), URL-decode the filename passed to them. If that filename contains URL-encoded NUL character, this may cause the function to interpret this as the end of the filename, thus interpreting the filename differently from what the user intended, which may lead it to reading a different file than intended.	CVSS3: 5.3	1% Низкий	около 4 лет назад
CVE-2021-21707 In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below 8.0.13, certain XML parsing functions, like simplexml_load_file(), URL-decode the filename passed to them. If that filename contains URL-encoded NUL character, this may cause the function to interpret this as the end of the filename, thus interpreting the filename differently from what the user intended, which may lead it to reading a different file than intended.	CVSS3: 5.3	1% Низкий	около 4 лет назад
CVE-2021-21707 In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below 8.0.13, certain XML parsing functions, like simplexml_load_file(), URL-decode the filename passed to them. If that filename contains URL-encoded NUL character, this may cause the function to interpret this as the end of the filename, thus interpreting the filename differently from what the user intended, which may lead it to reading a different file than intended.	CVSS3: 5.3	1% Низкий	около 4 лет назад
CVE-2021-21707 Special characters break path parsing in XML functions	CVSS3: 5.3	1% Низкий	2 месяца назад
CVE-2021-21707 In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below ...	CVSS3: 5.3	1% Низкий	около 4 лет назад
SUSE-SU-2021:3927-1 Security update for php74		1% Низкий	около 4 лет назад
GHSA-qh78-qfw9-93x9 In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below 8.0.13, certain XML parsing functions, like simplexml_load_file(), URL-decode the filename passed to them. If that filename contains URL-encoded NUL character, this may cause the function to interpret this as the end of the filename, thus interpreting the filename differently from what the user intended, which may lead it to reading a different file than intended.	CVSS3: 5.3	1% Низкий	около 4 лет назад
openSUSE-SU-2021:3943-1 Recommended update for php7			около 4 лет назад
openSUSE-SU-2021:1570-1 Recommended update for php7			около 4 лет назад
SUSE-SU-2021:3943-1 Recommended update for php7			около 4 лет назад
SUSE-SU-2022:2303-1 Security update for php8			больше 3 лет назад
SUSE-SU-2022:2292-1 Security update for php7			больше 3 лет назад
SUSE-SU-2022:0577-1 Security update for php72			почти 4 года назад
RLSA-2022:7628 Moderate: php:7.4 security, bug fix, and enhancement update			около 3 лет назад
ELSA-2022-7628 ELSA-2022-7628: php:7.4 security, bug fix, and enhancement update (MODERATE)			около 3 лет назад
openSUSE-SU-2022:0679-1 Security update for php7			почти 4 года назад
SUSE-SU-2022:0679-1 Security update for php7			почти 4 года назад
SUSE-SU-2022:3997-1 Security update for php7			около 3 лет назад
SUSE-SU-2022:4069-1 Security update for php7			около 3 лет назад

Уязвимостей на страницу