In PHP versions:8.1. before 8.1.33, 8.2. before 8.2.29, 8.3. before 8.3.23, 8.4. before 8.4.10 when parsing XML data in SOAP extensions, overly large (>2Gb) XML namespace prefix may lead to nul ...
Continue Reading
August 11, 2025
In PHP versions 8.0. before 8.0.29, 8.1. before 8.1.20, 8.2.* before 8.2.7 when using SOAP HTTP Digest Authentication, random value generator was not checked for failure, and was using narrower range ...
Continue Reading
August 11, 2025
In PHP versions 7.3.x below 7.3.27, 7.4.x below 7.4.15 and 8.0.x below 8.0.2, when using SOAP extension to connect to a SOAP server, a malicious SOAP server could return malformed XML data as a respon ...
Continue Reading
August 11, 2025
CVE-2025-1220: fix null byte termination in...Read More ...
Continue Reading
August 08, 2025
The version of php installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-6491 advisory. In PHP versions: ...
Continue Reading
August 07, 2025
The version of php installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-1220 advisory. In PHP versions: ...
Continue Reading
August 07, 2025
The version of php installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-1735 advisory. In PHP versions: ...
Continue Reading
August 07, 2025
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1114 advisory. fsockopen() doesn't regard hostname as well, hostname is terminated at the null byte. This ...
Continue Reading
August 06, 2025
Back to Main
