Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php 4.2 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-30090
Semcms Shop v4.2 exists to contain an arbitrary file uplaod vulnerability via the component SEMCMS_Upfile.php. This vulnerability allows malicious users to execute arbitrary code via uploading a crafted PHP file.
Sem-cms Semcms 4.2
9.8
CVSSv3
CVE-2019-3570
Call to the scrypt_enc() function in HHVM can lead to heap corruption by using specifically crafted parameters (N, r and p). This happens if the parameters are configurable by an attacker for instance by providing the output of scrypt_enc() in a context where Hack/PHP code would ...
Facebook Hiphop Virtual Machine 4.4.0
Facebook Hiphop Virtual Machine 4.5.0
Facebook Hiphop Virtual Machine 4.6.0
Facebook Hiphop Virtual Machine 4.7.0
Facebook Hiphop Virtual Machine 4.1.0
Facebook Hiphop Virtual Machine 4.3.0
Facebook Hiphop Virtual Machine 4.8.0
Facebook Hiphop Virtual Machine 4.2.0
Facebook Hiphop Virtual Machine
9.8
CVSSv3
CVE-2019-10910
In Symfony prior to 2.7.51, 2.8.x prior to 2.8.50, 3.x prior to 3.4.26, 4.x prior to 4.1.12, and 4.2.x prior to 4.2.7, when service ids allow user input, this could allow for SQL Injection and remote code execution. This is related to symfony/dependency-injection.
Sensiolabs Symfony
Drupal Drupal
9.8
CVSSv3
CVE-2019-10913
In Symfony prior to 2.7.51, 2.8.x prior to 2.8.50, 3.x prior to 3.4.26, 4.x prior to 4.1.12, and 4.2.x prior to 4.2.7, HTTP Methods provided as verbs or using the override header may be treated as trusted input, but they are not validated, possibly causing SQL injection or XSS. T...
Sensiolabs Symfony
2 Github repositories
9.8
CVSSv3
CVE-2019-5434
An attacker could send a specifically crafted payload to the XML-RPC invocation script and trigger the unserialize() call on the "what" parameter in the "openads.spc" RPC method. Such vulnerability could be used to perform various types of attacks, e.g. exploi...
Revive-sas Revive Adserver
1 EDB exploit
9.8
CVSSv3
CVE-2018-0310
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote malicious user to obtain sensitive information from memory or cause a denial of service (DoS) condition on the affected product. The vulne...
Cisco Nx-os 7.0\\(0\\)hsk\\(0.357\\)
Cisco Nx-os 8.1\\(0.2\\)s0
Cisco Nx-os 8.8\\(0.1\\)
Cisco Nx-os 8.0\\(1\\)
Cisco Nx-os 8.8\\(3.5\\)s0
Cisco Nx-os 7.0\\(3\\)i4\\(7\\)
Cisco Nx-os 7.0\\(3\\)i7\\(1\\)
Cisco Nx-os 3.1\\(3a\\)a
Cisco Nx-os 9.9\\(0.902\\)
Cisco Firepower Extensible Operating System
9.8
CVSSv3
CVE-2018-0304
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote malicious user to read sensitive memory content, create a denial of service (DoS) condition, or execute arbitrary code as root. The vulner...
Cisco Nexus 7000 Firmware 7.3\\(2\\)d1\\(0.49\\)
Cisco Nexus 7000 Firmware 8.1\\(0.112\\)s0
Cisco Nexus 7000 Firmware 8.0\\(1\\)
Cisco Nexus 5000 Firmware 7.3\\(0\\)d1\\(0.98\\)
Cisco Nexus 5000 Firmware 8.1\\(0.2\\)s0
Cisco Nexus 5000 Firmware 7.0\\(0\\)hsk\\(0.357\\)
Cisco Firepower 9000 Firmware R231
Cisco Firepower 9000 Firmware R211
Cisco Nexus 9000 Firmware 8.1\\(0\\)bd\\(0.20\\)
Cisco Nexus 9000 Firmware 8.1\\(1\\)s4
Cisco Unified Computing System Firmware 3.1\\(3a\\)a
Cisco Unified Computing System Firmware 7.0\\(0\\)hsk\\(0.357\\)
9.8
CVSSv3
CVE-2018-0308
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote malicious user to execute arbitrary code or cause a denial of service (DoS) condition. The vulnerability exists because the affected softw...
Cisco Nexus 7000 Firmware 7.3\\(2\\)d1\\(0.49\\)
Cisco Nexus 7000 Firmware 8.1\\(0.112\\)s0
Cisco Nexus 7000 Firmware 8.0\\(1\\)
Cisco Nexus 5000 Firmware 8.1\\(0.2\\)s0
Cisco Nexus 5000 Firmware 7.3\\(0\\)d1\\(0.98\\)
Cisco Nexus 5000 Firmware 7.0\\(0\\)hsk\\(0.357\\)
Cisco Firepower 9000 Firmware R231
Cisco Firepower 9000 Firmware R211
Cisco Nexus 9000 Firmware 8.1\\(0\\)bd\\(0.20\\)
Cisco Nexus 9000 Firmware 8.1\\(1\\)s4
Cisco Unified Computing System Firmware 3.1\\(3a\\)a
Cisco Unified Computing System Firmware 7.0\\(0\\)hsk\\(0.357\\)
9.8
CVSSv3
CVE-2018-0312
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote malicious user to execute arbitrary code or cause a denial of service (DoS) condition on an affected device. The vulnerability exists beca...
Cisco Nexus 7000 Firmware 8.1\\(0.112\\)s0
Cisco Nexus 7000 Firmware 8.0\\(1\\)
Cisco Nexus 7000 Firmware 7.3\\(2\\)d1\\(0.49\\)
Cisco Nexus 5000 Firmware 7.0\\(0\\)hsk\\(0.357\\)
Cisco Firepower 9000 Firmware R211
Cisco Firepower 9000 Firmware R231
Cisco Nexus 9000 Firmware 8.1\\(0\\)bd\\(0.20\\)
Cisco Nexus 9000 Firmware 8.1\\(1\\)s4
Cisco Unified Computing System Firmware 3.1\\(3a\\)a
9.8
CVSSv3
CVE-2018-0314
A vulnerability in the Cisco Fabric Services (CFS) component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote malicious user to execute arbitrary code on an affected device. The vulnerability exists because the affected software insufficientl...
Cisco Nexus 7000 Firmware 7.3\\(2\\)d1\\(0.49\\)
Cisco Nexus 7000 Firmware 8.1\\(0.112\\)s0
Cisco Nexus 7000 Firmware 8.0\\(1\\)
Cisco Nexus 5000 Firmware 8.1\\(0.2\\)s0
Cisco Nexus 5000 Firmware 8.8\\(0.1\\)
Cisco Nexus 5000 Firmware 7.0\\(0\\)hsk\\(0.357\\)
Cisco Firepower 9000 Firmware R211
Cisco Firepower 9000 Firmware R231
Cisco Nexus 9000 Firmware 8.1\\(0\\)bd\\(0.20\\)
Cisco Unified Computing System Firmware 3.1\\(3a\\)a
Cisco Unified Computing System Firmware 7.0\\(0\\)hsk\\(0.357\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »