In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before 8.3.12, erroneous parsing of multipart form data contained in an HTTP POST request could lead to legitimate data not being processed. This could lead to malicious attacker able to control part of the submitted data being able to exclude portion of other data, potentially leading to erroneous application behavior.

In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before 8.3.12, erroneous parsing of multipart form data contained in an HTTP POST request could lead to legitimate data not being processed. This could lead to malicious attacker able to control part of the submitted data being able to exclude portion of other data, potentially leading to erroneous application behavior.

In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before 8.3.12, erroneous parsing of multipart form data contained in an HTTP POST request could lead to legitimate data not being processed. This could lead to malicious attacker able to control part of the submitted data being able to exclude portion of other data, potentially leading to erroneous application behavior.

In PHP versions8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before ...

Erroneous parsing of multipart form data

Уязвимость интерпретатора языка программирования PHP, связанная с недостаточной проверкой входных данных, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации

Security update for php7

Security update for php74

Security update for php8

Security update for php8

ELSA-2024-10951: php:8.2 security update (MODERATE)

ELSA-2024-10950: php:8.1 security update (MODERATE)

ELSA-2024-10949: php:8.2 security update (MODERATE)

Множественные уязвимости php

Множественные уязвимости php

Множественные уязвимости php

ELSA-2025-7315: php security update (MODERATE)

ELSA-2024-10952: php:7.4 security update (MODERATE)