Количество 56
Количество 56
RLSA-2022:7628
Moderate: php:7.4 security, bug fix, and enhancement update
ELSA-2022-7628
ELSA-2022-7628: php:7.4 security, bug fix, and enhancement update (MODERATE)
CVE-2021-21707
In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below 8.0.13, certain XML parsing functions, like simplexml_load_file(), URL-decode the filename passed to them. If that filename contains URL-encoded NUL character, this may cause the function to interpret this as the end of the filename, thus interpreting the filename differently from what the user intended, which may lead it to reading a different file than intended.
CVE-2021-21707
In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below 8.0.13, certain XML parsing functions, like simplexml_load_file(), URL-decode the filename passed to them. If that filename contains URL-encoded NUL character, this may cause the function to interpret this as the end of the filename, thus interpreting the filename differently from what the user intended, which may lead it to reading a different file than intended.
CVE-2021-21707
In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below 8.0.13, certain XML parsing functions, like simplexml_load_file(), URL-decode the filename passed to them. If that filename contains URL-encoded NUL character, this may cause the function to interpret this as the end of the filename, thus interpreting the filename differently from what the user intended, which may lead it to reading a different file than intended.
CVE-2021-21707
In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below ...
SUSE-SU-2022:3997-1
Security update for php7
SUSE-SU-2021:3927-1
Security update for php74
GHSA-qh78-qfw9-93x9
In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below 8.0.13, certain XML parsing functions, like simplexml_load_file(), URL-decode the filename passed to them. If that filename contains URL-encoded NUL character, this may cause the function to interpret this as the end of the filename, thus interpreting the filename differently from what the user intended, which may lead it to reading a different file than intended.
BDU:2022-02394
Уязвимость функции simplexml_load_file() интерпретатора PHP , позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
SUSE-SU-2022:4069-1
Security update for php7
SUSE-SU-2022:4068-1
Security update for php74
openSUSE-SU-2021:3943-1
Recommended update for php7
openSUSE-SU-2021:1570-1
Recommended update for php7
SUSE-SU-2021:3943-1
Recommended update for php7
CVE-2021-32610
In Archive_Tar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193.
CVE-2021-32610
In Archive_Tar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193.
CVE-2021-32610
In Archive_Tar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193.
CVE-2021-32610
In Archive_Tar before 1.4.14, symlinks can refer to targets outside of ...
SUSE-SU-2022:2303-1
Security update for php8
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | RLSA-2022:7628 Moderate: php:7.4 security, bug fix, and enhancement update | больше 2 лет назад | ||
| ELSA-2022-7628 ELSA-2022-7628: php:7.4 security, bug fix, and enhancement update (MODERATE) | больше 2 лет назад | ||
 | CVE-2021-21707 In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below 8.0.13, certain XML parsing functions, like simplexml_load_file(), URL-decode the filename passed to them. If that filename contains URL-encoded NUL character, this may cause the function to interpret this as the end of the filename, thus interpreting the filename differently from what the user intended, which may lead it to reading a different file than intended. | CVSS3: 5.3 | 1% Низкий | больше 3 лет назад |
 | CVE-2021-21707 In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below 8.0.13, certain XML parsing functions, like simplexml_load_file(), URL-decode the filename passed to them. If that filename contains URL-encoded NUL character, this may cause the function to interpret this as the end of the filename, thus interpreting the filename differently from what the user intended, which may lead it to reading a different file than intended. | CVSS3: 5.3 | 1% Низкий | больше 3 лет назад |
 | CVE-2021-21707 In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below 8.0.13, certain XML parsing functions, like simplexml_load_file(), URL-decode the filename passed to them. If that filename contains URL-encoded NUL character, this may cause the function to interpret this as the end of the filename, thus interpreting the filename differently from what the user intended, which may lead it to reading a different file than intended. | CVSS3: 5.3 | 1% Низкий | больше 3 лет назад |
| CVE-2021-21707 In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below ... | CVSS3: 5.3 | 1% Низкий | больше 3 лет назад |
 | SUSE-SU-2022:3997-1 Security update for php7 | больше 2 лет назад | ||
| SUSE-SU-2021:3927-1 Security update for php74 | 1% Низкий | больше 3 лет назад | |
| GHSA-qh78-qfw9-93x9 In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below 8.0.13, certain XML parsing functions, like simplexml_load_file(), URL-decode the filename passed to them. If that filename contains URL-encoded NUL character, this may cause the function to interpret this as the end of the filename, thus interpreting the filename differently from what the user intended, which may lead it to reading a different file than intended. | CVSS3: 5.3 | 1% Низкий | больше 3 лет назад |
 | BDU:2022-02394 Уязвимость функции simplexml_load_file() интерпретатора PHP , позволяющая нарушителю получить несанкционированный доступ к защищаемой информации | CVSS3: 5.3 | 1% Низкий | больше 3 лет назад |
| SUSE-SU-2022:4069-1 Security update for php7 | больше 2 лет назад | ||
| SUSE-SU-2022:4068-1 Security update for php74 | больше 2 лет назад | ||
| openSUSE-SU-2021:3943-1 Recommended update for php7 | больше 3 лет назад | ||
| openSUSE-SU-2021:1570-1 Recommended update for php7 | больше 3 лет назад | ||
| SUSE-SU-2021:3943-1 Recommended update for php7 | больше 3 лет назад | ||
| CVE-2021-32610 In Archive_Tar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193. | CVSS3: 7.1 | 12% Средний | почти 4 года назад |
| CVE-2021-32610 In Archive_Tar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193. | CVSS3: 7.4 | 12% Средний | почти 4 года назад |
| CVE-2021-32610 In Archive_Tar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193. | CVSS3: 7.1 | 12% Средний | почти 4 года назад |
| CVE-2021-32610 In Archive_Tar before 1.4.14, symlinks can refer to targets outside of ... | CVSS3: 7.1 | 12% Средний | почти 4 года назад |
| SUSE-SU-2022:2303-1 Security update for php8 | почти 3 года назад |
Уязвимостей на страницу