Количество 37
Количество 37
SUSE-SU-2025:02474-1
Security update for php8
SUSE-SU-2025:02473-1
Security update for php7
SUSE-SU-2025:02463-1
Security update for php8
SUSE-SU-2025:02462-1
Security update for php8
RLSA-2025:23309
Moderate: php:8.3 security update
ELSA-2025-23309
ELSA-2025-23309: php:8.3 security update (MODERATE)
ROS-20250822-24
Множественные уязвимости php
ROS-20250822-23
Множественные уязвимости php
ROS-20250822-22
Множественные уязвимости php
ROS-20250822-21
Множественные уязвимости php
RLSA-2026:1412
Important: php:8.2 security update
RLSA-2026:1409
Important: php:8.2 security update
ELSA-2026-1412
ELSA-2026-1412: php:8.2 security update (IMPORTANT)
ELSA-2026-1409
ELSA-2026-1409: php:8.2 security update (IMPORTANT)
RLSA-2026:2470
Moderate: php:7.4 security update
ELSA-2026-2470
ELSA-2026-2470: php:7.4 security update (MODERATE)
CVE-2025-1220
In PHP versions:8.1.* before 8.1.33, 8.2.* before 8.2.29, 8.3.* before 8.3.23, 8.4.* before 8.4.10 some functions like fsockopen() lack validation that the hostname supplied does not contain null characters. This may lead to other functions like parse_url() treat the hostname in different way, thus opening way to security problems if the user code implements access checks before access using such functions.
CVE-2025-1220
In PHP versions:8.1.* before 8.1.33, 8.2.* before 8.2.29, 8.3.* before 8.3.23, 8.4.* before 8.4.10 some functions like fsockopen() lack validation that the hostname supplied does not contain null characters. This may lead to other functions like parse_url() treat the hostname in different way, thus opening way to security problems if the user code implements access checks before access using such functions.
CVE-2025-1220
In PHP versions:8.1.* before 8.1.33, 8.2.* before 8.2.29, 8.3.* before 8.3.23, 8.4.* before 8.4.10 some functions like fsockopen() lack validation that the hostname supplied does not contain null characters. This may lead to other functions like parse_url() treat the hostname in different way, thus opening way to security problems if the user code implements access checks before access using such functions.
CVE-2025-1220
Null byte termination in hostnames
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | SUSE-SU-2025:02474-1 Security update for php8 | 8 месяцев назад | ||
| SUSE-SU-2025:02473-1 Security update for php7 | 8 месяцев назад | ||
| SUSE-SU-2025:02463-1 Security update for php8 | 8 месяцев назад | ||
| SUSE-SU-2025:02462-1 Security update for php8 | 8 месяцев назад | ||
 | RLSA-2025:23309 Moderate: php:8.3 security update | 3 месяца назад | ||
| ELSA-2025-23309 ELSA-2025-23309: php:8.3 security update (MODERATE) | 3 месяца назад | ||
 | ROS-20250822-24 Множественные уязвимости php | CVSS3: 7.5 | 7 месяцев назад | |
| ROS-20250822-23 Множественные уязвимости php | CVSS3: 7.5 | 7 месяцев назад | |
| ROS-20250822-22 Множественные уязвимости php | CVSS3: 7.5 | 7 месяцев назад | |
| ROS-20250822-21 Множественные уязвимости php | CVSS3: 7.5 | 7 месяцев назад | |
| RLSA-2026:1412 Important: php:8.2 security update | около 2 месяцев назад | ||
| RLSA-2026:1409 Important: php:8.2 security update | около 2 месяцев назад | ||
| ELSA-2026-1412 ELSA-2026-1412: php:8.2 security update (IMPORTANT) | около 2 месяцев назад | ||
| ELSA-2026-1409 ELSA-2026-1409: php:8.2 security update (IMPORTANT) | около 2 месяцев назад | ||
| RLSA-2026:2470 Moderate: php:7.4 security update | около 1 месяца назад | ||
| ELSA-2026-2470 ELSA-2026-2470: php:7.4 security update (MODERATE) | около 1 месяца назад | ||
 | CVE-2025-1220 In PHP versions:8.1.* before 8.1.33, 8.2.* before 8.2.29, 8.3.* before 8.3.23, 8.4.* before 8.4.10 some functions like fsockopen() lack validation that the hostname supplied does not contain null characters. This may lead to other functions like parse_url() treat the hostname in different way, thus opening way to security problems if the user code implements access checks before access using such functions. | CVSS3: 3.7 | 0% Низкий | 9 месяцев назад |
 | CVE-2025-1220 In PHP versions:8.1.* before 8.1.33, 8.2.* before 8.2.29, 8.3.* before 8.3.23, 8.4.* before 8.4.10 some functions like fsockopen() lack validation that the hostname supplied does not contain null characters. This may lead to other functions like parse_url() treat the hostname in different way, thus opening way to security problems if the user code implements access checks before access using such functions. | CVSS3: 3.7 | 0% Низкий | 9 месяцев назад |
 | CVE-2025-1220 In PHP versions:8.1.* before 8.1.33, 8.2.* before 8.2.29, 8.3.* before 8.3.23, 8.4.* before 8.4.10 some functions like fsockopen() lack validation that the hostname supplied does not contain null characters. This may lead to other functions like parse_url() treat the hostname in different way, thus opening way to security problems if the user code implements access checks before access using such functions. | CVSS3: 3.7 | 0% Низкий | 9 месяцев назад |
 | CVE-2025-1220 Null byte termination in hostnames | CVSS3: 3.7 | 0% Низкий | 8 месяцев назад |
Уязвимостей на страницу