Vulnerabilities > PHP Group

DATE CVE VULNERABILITY TITLE RISK
2007-05-24 CVE-2006-7205 Denial-Of-Service vulnerability in PHP Group PHP 4.4.2/5.1.2
The array_fill function in ext/standard/array.c in PHP 4.4.2 and 5.1.2 allows context-dependent attackers to cause a denial of service (memory consumption) via a large num value.
network
low complexity
php-group
5.0
5.0
2007-05-22 CVE-2007-2519 Unspecified vulnerability in PHP Group Pear
Directory traversal vulnerability in the installer in PEAR 1.0 through 1.5.3 allows user-assisted remote attackers to overwrite arbitrary files via a ..
network
php-group
6.8
6.8
2006-06-14 CVE-2006-3018 Multiple Unspecified vulnerability in PHP
Unspecified vulnerability in the session extension functionality in PHP before 5.1.3 has unknown impact and attack vectors related to heap corruption.
network
low complexity
php-group
7.5
7.5
2006-06-14 CVE-2006-3016 Multiple Unspecified vulnerability in PHP
Unspecified vulnerability in session.c in PHP before 5.1.3 has unknown impact and attack vectors, related to "certain characters in session names," including special characters that are frequently associated with CRLF injection, SQL injection, cross-site scripting (XSS), and HTTP response splitting vulnerabilities.
network
php-group
critical
 9.3
9.3