Количество 19
Количество 19
BDU:2024-04846
Уязвимость функции filter_var интерпретатора языка программирования PHP, позволяющая нарушителю подменить URL-адреса с ошибочными данными
ROS-20240820-16
Уязвимость php 8.3
ROS-20240820-15
Уязвимость php 8.2
ROS-20240820-08
Уязвимость php 8.1
CVE-2024-5458
In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, due to a code logic error, filtering functions such as filter_var when validating URLs (FILTER_VALIDATE_URL) for certain types of URLs the function will result in invalid user information (username + password part of URLs) being treated as valid user information. This may lead to the downstream code accepting invalid URLs as valid and parsing them incorrectly.
CVE-2024-5458
In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, due to a code logic error, filtering functions such as filter_var when validating URLs (FILTER_VALIDATE_URL) for certain types of URLs the function will result in invalid user information (username + password part of URLs) being treated as valid user information. This may lead to the downstream code accepting invalid URLs as valid and parsing them incorrectly.
CVE-2024-5458
In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, due to a code logic error, filtering functions such as filter_var when validating URLs (FILTER_VALIDATE_URL) for certain types of URLs the function will result in invalid user information (username + password part of URLs) being treated as valid user information. This may lead to the downstream code accepting invalid URLs as valid and parsing them incorrectly.
CVE-2024-5458
CVE-2024-5458
In PHP versions8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before ...
SUSE-SU-2024:2039-1
Security update for php8
SUSE-SU-2024:2038-1
Security update for php8
SUSE-SU-2024:2027-1
Security update for php8
GHSA-w8qr-v226-r27w
Filter bypass in filter_var (FILTER_VALIDATE_URL)
SUSE-SU-2024:2037-1
Security update for php7
ELSA-2024-10951
ELSA-2024-10951: php:8.2 security update (MODERATE)
ELSA-2024-10950
ELSA-2024-10950: php:8.1 security update (MODERATE)
ELSA-2024-10949
ELSA-2024-10949: php:8.2 security update (MODERATE)
ELSA-2025-7315
ELSA-2025-7315: php security update (MODERATE)
ELSA-2024-10952
ELSA-2024-10952: php:7.4 security update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2024-04846 Уязвимость функции filter_var интерпретатора языка программирования PHP, позволяющая нарушителю подменить URL-адреса с ошибочными данными | CVSS3: 5.3 | 0% Низкий | около 1 года назад |
 | ROS-20240820-16 Уязвимость php 8.3 | CVSS3: 5.3 | 0% Низкий | 10 месяцев назад |
| ROS-20240820-15 Уязвимость php 8.2 | CVSS3: 5.3 | 0% Низкий | 10 месяцев назад |
| ROS-20240820-08 Уязвимость php 8.1 | CVSS3: 5.3 | 0% Низкий | 10 месяцев назад |
 | CVE-2024-5458 In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, due to a code logic error, filtering functions such as filter_var when validating URLs (FILTER_VALIDATE_URL) for certain types of URLs the function will result in invalid user information (username + password part of URLs) being treated as valid user information. This may lead to the downstream code accepting invalid URLs as valid and parsing them incorrectly. | CVSS3: 5.3 | 0% Низкий | около 1 года назад |
 | CVE-2024-5458 In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, due to a code logic error, filtering functions such as filter_var when validating URLs (FILTER_VALIDATE_URL) for certain types of URLs the function will result in invalid user information (username + password part of URLs) being treated as valid user information. This may lead to the downstream code accepting invalid URLs as valid and parsing them incorrectly. | CVSS3: 5.3 | 0% Низкий | больше 2 лет назад |
 | CVE-2024-5458 In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, due to a code logic error, filtering functions such as filter_var when validating URLs (FILTER_VALIDATE_URL) for certain types of URLs the function will result in invalid user information (username + password part of URLs) being treated as valid user information. This may lead to the downstream code accepting invalid URLs as valid and parsing them incorrectly. | CVSS3: 5.3 | 0% Низкий | около 1 года назад |
 | CVSS3: 5.3 | 0% Низкий | 12 месяцев назад | |
| CVE-2024-5458 In PHP versions8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before ... | CVSS3: 5.3 | 0% Низкий | около 1 года назад |
 | SUSE-SU-2024:2039-1 Security update for php8 | 0% Низкий | около 1 года назад | |
| SUSE-SU-2024:2038-1 Security update for php8 | 0% Низкий | около 1 года назад | |
| SUSE-SU-2024:2027-1 Security update for php8 | 0% Низкий | около 1 года назад | |
| GHSA-w8qr-v226-r27w Filter bypass in filter_var (FILTER_VALIDATE_URL) | CVSS3: 5.3 | 0% Низкий | около 1 года назад |
| SUSE-SU-2024:2037-1 Security update for php7 | около 1 года назад | ||
| ELSA-2024-10951 ELSA-2024-10951: php:8.2 security update (MODERATE) | 6 месяцев назад | ||
| ELSA-2024-10950 ELSA-2024-10950: php:8.1 security update (MODERATE) | 6 месяцев назад | ||
| ELSA-2024-10949 ELSA-2024-10949: php:8.2 security update (MODERATE) | 6 месяцев назад | ||
| ELSA-2025-7315 ELSA-2025-7315: php security update (MODERATE) | около 1 месяца назад | ||
| ELSA-2024-10952 ELSA-2024-10952: php:7.4 security update (MODERATE) | 6 месяцев назад |
Уязвимостей на страницу