Количество 20
Количество 20
CVE-2020-7070
In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below 7.4.11, when PHP is processing incoming HTTP cookie values, the cookie names are url-decoded. This may lead to cookies with prefixes like __Host confused with cookies that decode to such prefix, thus leading to an attacker being able to forge cookie which is supposed to be secure. See also CVE-2020-8184 for more information.
CVE-2020-7070
In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below 7.4.11, when PHP is processing incoming HTTP cookie values, the cookie names are url-decoded. This may lead to cookies with prefixes like __Host confused with cookies that decode to such prefix, thus leading to an attacker being able to forge cookie which is supposed to be secure. See also CVE-2020-8184 for more information.
CVE-2020-7070
In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below 7.4.11, when PHP is processing incoming HTTP cookie values, the cookie names are url-decoded. This may lead to cookies with prefixes like __Host confused with cookies that decode to such prefix, thus leading to an attacker being able to forge cookie which is supposed to be secure. See also CVE-2020-8184 for more information.
CVE-2020-7070
In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below ...
SUSE-SU-2020:2920-1
Security update for php7
SUSE-SU-2020:2894-1
Security update for php5
SUSE-SU-2020:14516-1
Security update for php53
GHSA-j7r5-hm2w-qqf9
In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below 7.4.11, when PHP is processing incoming HTTP cookie values, the cookie names are url-decoded. This may lead to cookies with prefixes like __Host confused with cookies that decode to such prefix, thus leading to an attacker being able to forge cookie which is supposed to be secure. See also CVE-2020-8184 for more information.
BDU:2021-01913
Уязвимость механизма обработки файлов cookie языка программирования php, позволяющая нарушителю оказать воздействие на целостность данных
openSUSE-SU-2020:1767-1
Security update for php7
openSUSE-SU-2020:1703-1
Security update for php7
SUSE-SU-2020:2997-1
Security update for php7
SUSE-SU-2020:2943-1
Security update for php72
SUSE-SU-2020:2941-1
Security update for php7
SUSE-SU-2020:2896-1
Security update for php74
RLSA-2021:4213
Moderate: php:7.4 security, bug fix, and enhancement update
ELSA-2021-4213
ELSA-2021-4213: php:7.4 security, bug fix, and enhancement update (MODERATE)
SUSE-SU-2022:4069-1
Security update for php7
SUSE-SU-2022:4068-1
Security update for php74
SUSE-SU-2022:4067-1
Security update for php7
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-7070 In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below 7.4.11, when PHP is processing incoming HTTP cookie values, the cookie names are url-decoded. This may lead to cookies with prefixes like __Host confused with cookies that decode to such prefix, thus leading to an attacker being able to forge cookie which is supposed to be secure. See also CVE-2020-8184 for more information. | CVSS3: 4.3 | 23% Средний | больше 4 лет назад |
 | CVE-2020-7070 In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below 7.4.11, when PHP is processing incoming HTTP cookie values, the cookie names are url-decoded. This may lead to cookies with prefixes like __Host confused with cookies that decode to such prefix, thus leading to an attacker being able to forge cookie which is supposed to be secure. See also CVE-2020-8184 for more information. | CVSS3: 5.3 | 23% Средний | около 5 лет назад |
 | CVE-2020-7070 In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below 7.4.11, when PHP is processing incoming HTTP cookie values, the cookie names are url-decoded. This may lead to cookies with prefixes like __Host confused with cookies that decode to such prefix, thus leading to an attacker being able to forge cookie which is supposed to be secure. See also CVE-2020-8184 for more information. | CVSS3: 4.3 | 23% Средний | больше 4 лет назад |
| CVE-2020-7070 In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below ... | CVSS3: 4.3 | 23% Средний | больше 4 лет назад |
 | SUSE-SU-2020:2920-1 Security update for php7 | 23% Средний | больше 4 лет назад | |
| SUSE-SU-2020:2894-1 Security update for php5 | 23% Средний | больше 4 лет назад | |
| SUSE-SU-2020:14516-1 Security update for php53 | 23% Средний | больше 4 лет назад | |
| GHSA-j7r5-hm2w-qqf9 In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below 7.4.11, when PHP is processing incoming HTTP cookie values, the cookie names are url-decoded. This may lead to cookies with prefixes like __Host confused with cookies that decode to such prefix, thus leading to an attacker being able to forge cookie which is supposed to be secure. See also CVE-2020-8184 for more information. | 23% Средний | около 3 лет назад | |
 | BDU:2021-01913 Уязвимость механизма обработки файлов cookie языка программирования php, позволяющая нарушителю оказать воздействие на целостность данных | CVSS3: 5.3 | 23% Средний | почти 5 лет назад |
| openSUSE-SU-2020:1767-1 Security update for php7 | больше 4 лет назад | ||
| openSUSE-SU-2020:1703-1 Security update for php7 | больше 4 лет назад | ||
| SUSE-SU-2020:2997-1 Security update for php7 | больше 4 лет назад | ||
| SUSE-SU-2020:2943-1 Security update for php72 | больше 4 лет назад | ||
| SUSE-SU-2020:2941-1 Security update for php7 | больше 4 лет назад | ||
| SUSE-SU-2020:2896-1 Security update for php74 | больше 4 лет назад | ||
 | RLSA-2021:4213 Moderate: php:7.4 security, bug fix, and enhancement update | больше 3 лет назад | ||
| ELSA-2021-4213 ELSA-2021-4213: php:7.4 security, bug fix, and enhancement update (MODERATE) | больше 3 лет назад | ||
| SUSE-SU-2022:4069-1 Security update for php7 | больше 2 лет назад | ||
| SUSE-SU-2022:4068-1 Security update for php74 | больше 2 лет назад | ||
| SUSE-SU-2022:4067-1 Security update for php7 | больше 2 лет назад |
Уязвимостей на страницу