Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpunit vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2019-10912
In Symfony prior to 2.8.50, 3.x prior to 3.4.26, 4.x prior to 4.1.12, and 4.2.x prior to 4.2.7, it is possible to cache objects that may contain bad user input. On serialization or unserialization, this could result in the deletion of files that the current user has access to. Th...
Sensiolabs Symfony
7.5
CVSSv2
CVE-2017-9841
Util/PHP/eval-stdin.php in PHPUnit prior to 4.8.28 and 5.x prior to 5.6.3 allows remote malicious users to execute arbitrary PHP code via HTTP POST data beginning with a "<?php " substring, as demonstrated by an attack on a site with an exposed /vendor folder, i.e., ...
Phpunit Project Phpunit
Oracle Communications Diameter Signaling Router
21 Github repositories
1 Article
6.8
CVSSv2
CVE-2017-6381
A 3rd party development library including with Drupal 8 development dependencies is vulnerable to remote code execution. This is mitigated by the default .htaccess protection against PHP execution, and the fact that Composer development dependencies aren't normal installed. ...
Drupal Drupal 8.0.0
Drupal Drupal 8.0.6
Drupal Drupal 8.1.0
Drupal Drupal 8.1.3
Drupal Drupal 8.1.4
Drupal Drupal 8.2.0
Drupal Drupal 8.0.4
Drupal Drupal 8.0.5
Drupal Drupal 8.1.10
Drupal Drupal 8.1.2
Drupal Drupal 8.1.9
Drupal Drupal 8.0.1
Drupal Drupal 8.1.5
Drupal Drupal 8.1.6
Drupal Drupal 8.0.2
Drupal Drupal 8.0.3
Drupal Drupal 8.1.1
Drupal Drupal 8.1.7
Drupal Drupal 8.1.8
Drupal Drupal 8.2.1
5
CVSSv2
CVE-2014-7848
lib/phpunit/bootstrap.php in Moodle 2.6.x prior to 2.6.6 and 2.7.x prior to 2.7.3 allows remote malicious users to obtain sensitive information via a direct request, which reveals the full path in an error message.
Moodle Moodle
Moodle Moodle 2.5.8
Moodle Moodle 2.5.7
Moodle Moodle 2.5.6
Moodle Moodle 2.7.0
Moodle Moodle 2.7.1
Moodle Moodle 2.7.2
Moodle Moodle 2.5.1
Moodle Moodle 2.5.0
Moodle Moodle 2.6.0
Moodle Moodle 2.6.1
Moodle Moodle 2.5.5
Moodle Moodle 2.5.3
Moodle Moodle 2.6.3
Moodle Moodle 2.6.5
Moodle Moodle 2.5.4
Moodle Moodle 2.5.2
Moodle Moodle 2.6.2
Moodle Moodle 2.6.4
4.3
CVSSv2
CVE-2013-4744
Cross-site scripting (XSS) vulnerability in the PHPUnit extension prior to 3.5.15 for TYPO3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Phpunit Project Phpunit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started