Lucene search
Sondash128H1:131452HistoryApr 16, 2016 - 10:49 p.m.
Gratipay: PHP 5.4.45 is Outdated and Full of Preformance Interupting Arbitrary Code Execution Bugs
2016-04-1622:49:59
sondash128
hackerone.com
72
0.089 Low
EPSS
Percentile
94.6%
Your PHP version is affected by quite a few remote arbitrary code execution, remote file renaming, and remote file rewriting bugs that require no authentication and can cause big problems, from performance interruptions and messing with server files to DoS attacks. These are not related to any particular non-default module, but php itself.
Here’s a little list I compiled:
CVE-2015-2301
CVE-2014-9652
CVE-2014-5459
CVE-2014-4698
CVE-2014-4670
CVE-2014-3981
Related
kaspersky
kaspersky
KLA10290 DoS vulnerability in PHP
2014-07-10 00:00:00
KLA10514 Multiple vulnerabilities in PHP and plugins
2015-03-30 00:00:00
nessus
nessus
PHP 5.5.x < 5.5.15 Multiple Vulnerabilities
2014-07-25 00:00:00
openSUSE Security Update : php5 (openSUSE-2014-471)
2014-08-01 00:00:00
openSUSE Security Update : openSUSE-2014- (openSUSE-2014--1)
2014-07-31 00:00:00
openvas
openvas
PHP Multiple Use-After-Free Vulnerabilities (Jul 2014)
2014-07-18 00:00:00
Mageia: Security Advisory (MGASA-2014-0324)
2022-01-28 00:00:00
Debian Security Advisory DSA 3126-1 (php5 - security update)
2015-01-12 00:00:00
mageia
mageia
Updated php packages fix security vulnerabilities
2014-08-08 15:23:49
prion
prion
Out-of-bounds
2015-03-30 10:59:00
Design/Logic Flaw
2014-07-10 11:06:00
Design/Logic Flaw
2015-03-30 10:59:00
osv
osv
php5 - security update
2015-01-12 00:00:00
php5 - regression update
2015-03-20 00:00:00
php5 - security update
2015-03-20 00:00:00
nvd
nvd
cve
cve
cvelist
cvelist
ubuntucve
ubuntucve
debiancve
debiancve
CVE-2014-9652
2015-03-30 10:59:01
f5
f5
K17212 : PHP vulnerability CVE-2014-5459
2015-09-01 00:00:00
SOL17212 - PHP vulnerability CVE-2014-5459
2015-09-01 00:00:00
SOL15761 - Multiple PHP 5.x vulnerabilities
2014-10-30 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-05-02 05:04:21
Arbitrary Code Execution
2019-05-02 05:04:21
Denial Of Service (DoS)
2019-05-02 05:39:23
redhat
redhat
(RHSA-2014:1326) Moderate: php53 and php security update
2014-09-30 00:00:00
(RHSA-2014:1327) Moderate: php security update
2014-09-30 00:00:00
(RHSA-2015:1053) Moderate: php55 security and bug fix update
2015-06-04 00:00:00
centos
centos
php, php53 security update
2014-09-30 10:27:47
php security update
2014-09-30 10:59:18
oraclelinux
oraclelinux
php53 and php security update
2014-09-30 00:00:00
php security update
2014-09-30 00:00:00
php55 security and bug fix update
2016-02-04 00:00:00
suse
suse
Security update for php5 (important)
2015-03-04 16:04:57
Security update for php5 (important)
2015-03-06 11:04:50
Security update for PHP 5.3 (important)
2015-03-05 21:04:56
securityvulns
securityvulns
[SECURITY] [DSA 3198-1] php5 security update
2015-03-21 00:00:00
[USN-2276-1] PHP vulnerabilities
2014-07-14 00:00:00
file / PHP multiple security vulnerabilities
2014-07-14 00:00:00
debian
debian
[SECURITY] [DSA 3198-2] php5 regression update
2015-03-28 18:47:31
[SECURITY] [DSA 3198-1] php5 security update
2015-03-20 17:31:08
[SECURITY] [DSA 3198-2] php5 regression update
2015-03-28 18:47:31
slackware
slackware
[slackware-security] php
2014-09-04 22:00:56
[slackware-security] php
2014-07-12 03:48:04
ubuntu
ubuntu
PHP vulnerabilities
2014-07-09 00:00:00
PHP vulnerabilities
2015-03-18 00:00:00
PHP vulnerabilities
2015-02-17 00:00:00
ibm
ibm
gentoo
gentoo
file: Multiple vulnerabilities
2017-01-17 00:00:00
amazon
amazon
freebsd
freebsd
Several vulnerabilities found in PHP
2015-04-16 00:00:00
PHP multiple vulnerabilities
2014-08-14 00:00:00