Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pcre pcre vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2015-8387
PCRE prior to 8.38 mishandles (?123) subroutine calls and related subroutine calls, which allows remote malicious users to cause a denial of service (integer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegE...
Pcre Perl Compatible Regular Expression Library
Fedoraproject Fedora 22
Php Php
7.5
CVSSv2
CVE-2015-8390
PCRE prior to 8.38 mishandles the [: and \\ substrings in character classes, which allows remote malicious users to cause a denial of service (uninitialized memory read) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript Re...
Pcre Perl Compatible Regular Expression Library
Fedoraproject Fedora 22
Php Php
7.5
CVSSv2
CVE-2015-8394
PCRE prior to 8.38 mishandles the (?(<digits>) and (?(R<digits>) conditions, which allows remote malicious users to cause a denial of service (integer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript...
Pcre Perl Compatible Regular Expression Library
Php Php
7.5
CVSSv2
CVE-2015-8389
PCRE prior to 8.38 mishandles the /(?:|a|){100}x/ pattern and related patterns, which allows remote malicious users to cause a denial of service (infinite recursion) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp...
Pcre Perl Compatible Regular Expression Library
Fedoraproject Fedora 22
Php Php
7.5
CVSSv2
CVE-2015-8380
The pcre_exec function in pcre_exec.c in PCRE prior to 8.38 mishandles a // pattern with a \01 string, which allows remote malicious users to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted regular expression, as demo...
Pcre Perl Compatible Regular Expression Library
Fedoraproject Fedora 22
7.5
CVSSv2
CVE-2015-8381
The compile_regex function in pcre_compile.c in PCRE prior to 8.38 and pcre2_compile.c in PCRE2 prior to 10.2x mishandles the /(?J:(?|(:(?|(?'R')(\k'R')|((?'R')))H'Rk'Rf)|s(?'R'))))/ and /(?J:(?|(:(?|(?'R')(\z(?|(?'...
Pcre Perl Compatible Regular Expression Library
7.5
CVSSv2
CVE-2015-4022
Integer overflow in the ftp_genlist function in ext/ftp/ftp.c in PHP prior to 5.4.41, 5.5.x prior to 5.5.25, and 5.6.x prior to 5.6.9 allows remote FTP servers to execute arbitrary code via a long reply to a LIST command, leading to a heap-based buffer overflow.
Redhat Enterprise Linux Server Eus 7.1
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Hpc Node 7.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Hpc Node Eus 7.1
Redhat Enterprise Linux Workstation 7.0
Php Php
Php Php 5.4.39
Php Php 5.5.0
Php Php 5.5.11
Php Php 5.5.12
Php Php 5.5.21
Php Php 5.5.22
Php Php 5.5.7
Php Php 5.5.8
Php Php 5.6.0
Php Php 5.6.8
Php Php 5.5.9
Php Php 5.5.18
Php Php 5.5.19
Php Php 5.5.3
Php Php 5.5.4
7.5
CVSSv2
CVE-2015-4026
The pcntl_exec implementation in PHP prior to 5.4.41, 5.5.x prior to 5.5.25, and 5.6.x prior to 5.6.9 truncates a pathname upon encountering a \x00 character, which might allow remote malicious users to bypass intended extension restrictions and execute files with unexpected name...
Redhat Enterprise Linux 6.0
Redhat Enterprise Linux 7.0
Php Php 5.5.0
Php Php
Php Php 5.4.39
Php Php 5.5.11
Php Php 5.5.12
Php Php 5.5.21
Php Php 5.5.22
Php Php 5.5.8
Php Php 5.6.0
Php Php 5.6.8
Php Php 5.5.9
Php Php 5.5.18
Php Php 5.5.19
Php Php 5.5.4
Php Php 5.5.5
Php Php 5.6.4
Php Php 5.6.5
Php Php 5.5.1
Php Php 5.5.10
Php Php 5.5.2
7.5
CVSSv2
CVE-2008-2371
Heap-based buffer overflow in pcre_compile.c in the Perl-Compatible Regular Expression (PCRE) library 7.7 allows context-dependent malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a regular expression that begins with an option and conta...
Pcre Pcre 7.7
Php Php
Debian Debian Linux 4.0
Canonical Ubuntu Linux 7.04
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 6.06
Fedoraproject Fedora 9
Fedoraproject Fedora 8
Opensuse Opensuse 10.3
7.5
CVSSv2
CVE-2008-0674
Buffer overflow in PCRE prior to 7.6 allows remote malicious users to execute arbitrary code via a regular expression containing a character class with a large number of characters with Unicode code points greater than 255.
Pcre Pcre
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »