Download
| Alert*
oval:org.secpod.oval:def:1601096
In PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0, PHP DirectoryIterator class accepts filenames with embedded \0 byte and treats them as terminating at that byte. This could lead to security vulnerabilities, e.g. in applications checking paths that the code is allowed to access. In P ... oval:org.secpod.oval:def:69805 Multiple security issues were found in PHP, a widely-used open source general purpose scripting language which could result in information disclosure, denial of service or incorrect validation of path names. oval:org.secpod.oval:def:1601887 cdf_read_property_info in cdf.c in file through 5.37 does not restrict the number of CDF_VECTOR elements, which allows a heap-based buffer overflow oval:org.secpod.oval:def:2105452 Oracle Solaris 11 - ( CVE-2019-11044 ) oval:org.secpod.oval:def:604752 Multiple security issues were found in PHP, a widely-used open source general purpose scripting language which could result in information disclosure, denial of service or incorrect validation of path names. |