Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php 5.6.8 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2016-5093
The get_icu_value_internal function in ext/intl/locale/locale_methods.c in PHP prior to 5.5.36, 5.6.x prior to 5.6.22, and 7.x prior to 7.0.7 does not ensure the presence of a '\0' character, which allows remote malicious users to cause a denial of service (out-of-bound...
Php Php 5.6.2
Php Php 5.6.19
Php Php 7.0.6
Php Php 5.6.18
Php Php 5.6.6
Php Php 5.6.7
Php Php 5.6.0
Php Php 5.6.1
Php Php 7.0.0
Php Php 7.0.1
Php Php 5.6.17
Php Php 5.6.16
Php Php 5.6.15
Php Php 5.6.8
Php Php 5.6.9
Php Php
Php Php 7.0.2
Php Php 7.0.3
Php Php 5.6.14
Php Php 5.6.3
Php Php 5.6.13
Php Php 5.6.12
7.5
CVSSv2
CVE-2016-5095
Integer overflow in the php_escape_html_entities_ex function in ext/standard/html.c in PHP prior to 5.5.36 and 5.6.x prior to 5.6.22 allows remote malicious users to cause a denial of service or possibly have unspecified other impact by triggering a large output string from a FIL...
Php Php 5.6.0
Php Php 5.6.1
Php Php 5.6.16
Php Php 5.6.17
Php Php 5.6.4
Php Php 5.6.5
Php Php 5.6.10
Php Php 5.6.11
Php Php 5.6.18
Php Php 5.6.19
Php Php 5.6.6
Php Php 5.6.7
Php Php 5.6.8
Php Php 5.6.14
Php Php 5.6.15
Php Php 5.6.21
Php Php 5.6.3
Php Php 5.6.12
Php Php 5.6.13
Php Php 5.6.2
Php Php 5.6.20
Php Php 5.6.9
4.3
CVSSv2
CVE-2016-6292
The exif_process_user_comment function in ext/exif/exif.c in PHP prior to 5.5.38, 5.6.x prior to 5.6.24, and 7.x prior to 7.0.9 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted JPEG image.
Php Php 5.6.1
Php Php 5.6.0
Php Php 5.6.5
Php Php 7.0.4
Php Php 5.6.12
Php Php 5.6.13
Php Php 5.6.4
Php Php 7.0.3
Php Php 5.6.6
Php Php 7.0.1
Php Php 5.6.18
Php Php 5.6.11
Php Php 5.6.2
Php Php 5.6.10
Php Php
Php Php 5.6.7
Php Php 5.6.21
Php Php 5.6.15
Php Php 5.6.20
Php Php 7.0.2
Php Php 5.6.17
Php Php 5.6.16
7.5
CVSSv2
CVE-2016-4071
Format string vulnerability in the php_snmp_error function in ext/snmp/snmp.c in PHP prior to 5.5.34, 5.6.x prior to 5.6.20, and 7.x prior to 7.0.5 allows remote malicious users to execute arbitrary code via format string specifiers in an SNMP::get call.
Php Php 5.6.1
Php Php 5.6.0
Php Php 5.6.5
Php Php 5.6.12
Php Php 5.6.13
Php Php 5.6.4
Php Php 5.6.6
Php Php 5.6.18
Php Php 5.6.11
Php Php 5.6.2
Php Php 5.6.10
Php Php 5.6.7
Php Php 5.6.15
Php Php 5.6.17
Php Php 5.6.16
Php Php 5.6.9
Php Php 5.6.3
Php Php 5.6.8
Php Php 5.6.14
Php Php 5.6.19
Apple Mac Os X
Php Php 5.5.0
1 EDB exploit
10
CVSSv2
CVE-2015-4642
The escapeshellarg function in ext/standard/exec.c in PHP prior to 5.4.42, 5.5.x prior to 5.5.26, and 5.6.x prior to 5.6.10 on Windows allows remote malicious users to execute arbitrary OS commands via a crafted string to an application that accepts command-line arguments for a c...
Php Php
Php Php 5.5.0
Php Php 5.5.1
Php Php 5.5.2
Php Php 5.5.3
Php Php 5.5.4
Php Php 5.5.5
Php Php 5.5.6
Php Php 5.5.7
Php Php 5.5.8
Php Php 5.5.9
Php Php 5.5.10
Php Php 5.5.11
Php Php 5.5.12
Php Php 5.5.13
Php Php 5.5.14
Php Php 5.5.15
Php Php 5.5.16
Php Php 5.5.17
Php Php 5.5.18
Php Php 5.5.19
Php Php 5.5.20
7.5
CVSSv2
CVE-2015-4598
PHP prior to 5.4.42, 5.5.x prior to 5.5.26, and 5.6.x prior to 5.6.10 does not ensure that pathnames lack %00 sequences, which might allow remote malicious users to read or write to arbitrary files via crafted input to an application that calls (1) a DOMDocument save method or (2...
Redhat Enterprise Linux Server Eus 7.1
Redhat Enterprise Linux Hpc Node 7.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Hpc Node Eus 7.1
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Php Php 5.5.25
Php Php 5.5.24
Php Php 5.6.2
Php Php 5.6.1
Php Php 5.5.18
Php Php 5.6.7
Php Php 5.6.6
Php Php 5.5.22
Php Php 5.5.21
Php Php 5.5.14
Php Php 5.5.13
Php Php 5.5.6
Php Php 5.5.5
Php Php 5.5.4
Php Php 5.6.5
Php Php 5.6.4
7.5
CVSSv2
CVE-2015-4116
Use-after-free vulnerability in the spl_ptr_heap_insert function in ext/spl/spl_heap.c in PHP prior to 5.5.27 and 5.6.x prior to 5.6.11 allows remote malicious users to execute arbitrary code by triggering a failed SplMinHeap::compare operation.
Opensuse Leap 42.1
Php Php 5.6.1
Php Php 5.6.5
Php Php 5.6.0
Php Php 5.6.4
Php Php 5.6.6
Php Php 5.6.2
Php Php 5.6.10
Php Php 5.6.7
Php Php
Php Php 5.6.9
Php Php 5.6.3
Php Php 5.6.8
6.4
CVSSv2
CVE-2016-3185
The make_http_soap_request function in ext/soap/php_http.c in PHP prior to 5.4.44, 5.5.x prior to 5.5.28, 5.6.x prior to 5.6.12, and 7.x prior to 7.0.4 allows remote malicious users to obtain sensitive information from process memory or cause a denial of service (type confusion a...
Php Php 5.6.1
Php Php 5.6.0
Php Php 5.6.5
Php Php 5.6.4
Php Php 5.6.6
Php Php 5.6.11
Php Php 5.6.2
Php Php 5.6.10
Php Php 5.6.7
Php Php 5.6.9
Php Php 5.6.3
Php Php 5.6.8
Php Php
Php Php 7.0.3
Php Php 7.0.1
Php Php 7.0.2
Php Php 7.0.0
Php Php 5.5.0
Php Php 5.5.19
Php Php 5.5.25
Php Php 5.5.16
Php Php 5.5.1
4.3
CVSSv2
CVE-2015-8838
ext/mysqlnd/mysqlnd.c in PHP prior to 5.4.43, 5.5.x prior to 5.5.27, and 5.6.x prior to 5.6.11 uses a client SSL option to mean that SSL is optional, which allows man-in-the-middle malicious users to spoof servers via a cleartext-downgrade attack, a related issue to CVE-2015-3152...
Php Php 5.5.0
Php Php 5.5.19
Php Php 5.5.25
Php Php 5.5.16
Php Php 5.5.1
Php Php 5.5.5
Php Php 5.5.21
Php Php 5.5.17
Php Php 5.5.14
Php Php 5.5.7
Php Php 5.5.12
Php Php 5.5.6
Php Php 5.5.3
Php Php 5.5.23
Php Php 5.5.8
Php Php 5.5.24
Php Php 5.5.15
Php Php 5.5.11
Php Php 5.5.13
Php Php 5.5.4
Php Php 5.5.26
Php Php 5.5.10
5
CVSSv2
CVE-2015-4021
The phar_parse_tarfile function in ext/phar/tar.c in PHP prior to 5.4.41, 5.5.x prior to 5.5.25, and 5.6.x prior to 5.6.9 does not verify that the first character of a filename is different from the \0 character, which allows remote malicious users to cause a denial of service (i...
Redhat Enterprise Linux Hpc Node Eus 7.1
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Server Eus 7.1
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Hpc Node 7.0
Apple Mac Os X
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Php Php 5.5.0
Php Php 5.5.1
Php Php 5.5.19
Php Php 5.5.2
Php Php 5.5.4
Php Php 5.5.5
Php Php 5.6.0
Php Php 5.6.5
Php Php 5.6.6
Php Php 5.4.39
Php Php 5.5.12
Php Php 5.5.13
Php Php 5.5.22
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »