Количество 28
Количество 28
BDU:2025-02835
Уязвимость интерпретатора языка программирования PHP, связанная с ошибкой числового усечения, позволяющая нарушителю перенаправить пользователя на произвольный URL-адрес или вызвать отказ в обслуживании
ROS-20250430-12
Множественные уязвимости php 8.3
ROS-20250430-11
Множественные уязвимости php 8.2
ROS-20250430-10
Множественные уязвимости php 8.1
CVE-2025-1861
In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when parsing HTTP redirect in the response to an HTTP request, there is currently limit on the location value size caused by limited size of the location buffer to 1024. However as per RFC9110, the limit is recommended to be 8000. This may lead to incorrect URL truncation and redirecting to a wrong location.
CVE-2025-1861
In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when parsing HTTP redirect in the response to an HTTP request, there is currently limit on the location value size caused by limited size of the location buffer to 1024. However as per RFC9110, the limit is recommended to be 8000. This may lead to incorrect URL truncation and redirecting to a wrong location.
CVE-2025-1861
In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when parsing HTTP redirect in the response to an HTTP request, there is currently limit on the location value size caused by limited size of the location buffer to 1024. However as per RFC9110, the limit is recommended to be 8000. This may lead to incorrect URL truncation and redirecting to a wrong location.
CVE-2025-1861
Stream HTTP wrapper truncates redirect location to 1024 bytes
CVE-2025-1861
In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* ...
GHSA-52jp-hrpf-2jff
Stream HTTP wrapper truncate redirect location to 1024 bytes
RLSA-2025:7431
Moderate: php security update
ELSA-2025-7431
ELSA-2025-7431: php security update (MODERATE)
SUSE-SU-2025:1026-1
Security update for php7
SUSE-SU-2025:1025-1
Security update for php7
SUSE-SU-2025:1012-1
Security update for php8
SUSE-SU-2025:0994-1
Security update for php8
RLSA-2025:7489
Important: php security update
RLSA-2025:7418
Important: php:8.3 security update
ELSA-2025-7489
ELSA-2025-7489: php security update (IMPORTANT)
ELSA-2025-7418
ELSA-2025-7418: php:8.3 security update (IMPORTANT)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2025-02835 Уязвимость интерпретатора языка программирования PHP, связанная с ошибкой числового усечения, позволяющая нарушителю перенаправить пользователя на произвольный URL-адрес или вызвать отказ в обслуживании | CVSS3: 4.3 | 1% Низкий | больше 1 года назад |
 | ROS-20250430-12 Множественные уязвимости php 8.3 | CVSS3: 6.5 | около 1 года назад | |
| ROS-20250430-11 Множественные уязвимости php 8.2 | CVSS3: 6.5 | около 1 года назад | |
| ROS-20250430-10 Множественные уязвимости php 8.1 | CVSS3: 6.5 | около 1 года назад | |
 | CVE-2025-1861 In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when parsing HTTP redirect in the response to an HTTP request, there is currently limit on the location value size caused by limited size of the location buffer to 1024. However as per RFC9110, the limit is recommended to be 8000. This may lead to incorrect URL truncation and redirecting to a wrong location. | CVSS3: 9.8 | 1% Низкий | около 1 года назад |
 | CVE-2025-1861 In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when parsing HTTP redirect in the response to an HTTP request, there is currently limit on the location value size caused by limited size of the location buffer to 1024. However as per RFC9110, the limit is recommended to be 8000. This may lead to incorrect URL truncation and redirecting to a wrong location. | CVSS3: 5.3 | 1% Низкий | около 1 года назад |
 | CVE-2025-1861 In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when parsing HTTP redirect in the response to an HTTP request, there is currently limit on the location value size caused by limited size of the location buffer to 1024. However as per RFC9110, the limit is recommended to be 8000. This may lead to incorrect URL truncation and redirecting to a wrong location. | CVSS3: 9.8 | 1% Низкий | около 1 года назад |
 | CVE-2025-1861 Stream HTTP wrapper truncates redirect location to 1024 bytes | CVSS3: 9.8 | 1% Низкий | около 1 года назад |
| CVE-2025-1861 In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* ... | CVSS3: 9.8 | 1% Низкий | около 1 года назад |
| GHSA-52jp-hrpf-2jff Stream HTTP wrapper truncate redirect location to 1024 bytes | 1% Низкий | больше 1 года назад | |
 | RLSA-2025:7431 Moderate: php security update | 9 месяцев назад | ||
| ELSA-2025-7431 ELSA-2025-7431: php security update (MODERATE) | около 1 года назад | ||
 | SUSE-SU-2025:1026-1 Security update for php7 | около 1 года назад | ||
| SUSE-SU-2025:1025-1 Security update for php7 | около 1 года назад | ||
| SUSE-SU-2025:1012-1 Security update for php8 | около 1 года назад | ||
| SUSE-SU-2025:0994-1 Security update for php8 | около 1 года назад | ||
| RLSA-2025:7489 Important: php security update | 9 месяцев назад | ||
| RLSA-2025:7418 Important: php:8.3 security update | 11 месяцев назад | ||
| ELSA-2025-7489 ELSA-2025-7489: php security update (IMPORTANT) | 12 месяцев назад | ||
| ELSA-2025-7418 ELSA-2025-7418: php:8.3 security update (IMPORTANT) | около 1 года назад |
Уязвимостей на страницу