| Max CVSS | 7.5 | Min CVSS | 3.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-0988 | 4.3 |
The zend_hash_init function in PHP 5 before 5.2.1 and PHP 4 before 4.4.5, when running on a 64-bit platform, allows context-dependent attackers to cause a denial of service (infinite loop) by unserializing certain integer expressions, which only caus
|
09-10-2019 - 22:52 | 20-02-2007 - 17:28 | |
| CVE-2007-1701 | 6.8 |
PHP 4 before 4.4.5, and PHP 5 before 5.2.1, when register_globals is enabled, allows context-dependent attackers to execute arbitrary code via deserialization of session data, which overwrites arbitrary global variables, as demonstrated by calling se
|
09-10-2019 - 22:52 | 27-03-2007 - 01:19 | |
| CVE-2006-4625 | 3.6 |
PHP 4.x up to 4.4.4 and PHP 5 up to 5.1.6 allows local users to bypass certain Apache HTTP Server httpd.conf options, such as safe_mode and open_basedir, via the ini_restore function, which resets the values to their php.ini (Master Value) defaults.
|
30-10-2018 - 16:25 | 12-09-2006 - 16:07 | |
| CVE-2007-1884 | 6.8 |
Multiple integer signedness errors in the printf function family in PHP 4 before 4.4.5 and PHP 5 before 5.2.1 on 64 bit machines allow context-dependent attackers to execute arbitrary code via (1) certain negative argument numbers that arise in the p
|
30-10-2018 - 16:25 | 06-04-2007 - 01:19 | |
| CVE-2007-1885 | 7.5 |
Integer overflow in the str_replace function in PHP 4 before 4.4.5 and PHP 5 before 5.2.1 allows context-dependent attackers to execute arbitrary code via a single character search string in conjunction with a long replacement string, which overflows
|
30-10-2018 - 16:25 | 06-04-2007 - 01:19 | |
| CVE-2007-1835 | 4.6 |
PHP 4 before 4.4.5 and PHP 5 before 5.2.1, when using an empty session save path (session.save_path), uses the TMPDIR default after checking the restrictions, which allows local users to bypass open_basedir restrictions.
|
30-10-2018 - 16:25 | 03-04-2007 - 00:19 | |
| CVE-2007-1380 | 5.0 |
The php_binary serialization handler in the session extension in PHP before 4.4.5, and 5.x before 5.2.1, allows context-dependent attackers to obtain sensitive information (memory contents) via a serialized variable entry with a large length value, w
|
30-10-2018 - 16:25 | 10-03-2007 - 00:19 | |
| CVE-2007-1700 | 7.5 |
The session extension in PHP 4 before 4.4.5, and PHP 5 before 5.2.1, calculates the reference count for the session variables without considering the internal pointer from the session globals, which allows context-dependent attackers to execute arbit
|
30-10-2018 - 16:25 | 27-03-2007 - 01:19 | |
| CVE-2007-1286 | 6.8 |
Integer overflow in PHP 4.4.4 and earlier allows remote context-dependent attackers to execute arbitrary code via a long string to the unserialize function, which triggers the overflow in the ZVAL reference counter.
|
16-10-2018 - 16:37 | 06-03-2007 - 20:19 | |
| CVE-2007-1710 | 4.3 |
The readfile function in PHP 4.4.4, 5.1.6, and 5.2.1 allows context-dependent attackers to bypass safe_mode restrictions and read arbitrary files by referring to local files with a certain URL syntax instead of a pathname syntax, as demonstrated by a
|
11-10-2017 - 01:31 | 27-03-2007 - 01:19 | |
| CVE-2007-1886 | 6.8 |
Integer overflow in the str_replace function in PHP 4.4.5 and PHP 5.2.1 allows context-dependent attackers to have an unknown impact via a single character search string in conjunction with a single character replacement string, which causes an "off
|
29-07-2017 - 01:31 | 06-04-2007 - 01:19 |