Vulnerabilities > PHP > PHP > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2000-12-19 | CVE-2000-0967 | Unspecified vulnerability in PHP 3.0/4.0 PHP 3 and 4 do not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands by triggering error messages that are improperly written to the error logs. | 10.0 |
| 2000-01-04 | CVE-2000-0059 | Unspecified vulnerability in PHP PHP3 with safe_mode enabled does not properly filter shell metacharacters from commands that are executed by popen, which could allow remote attackers to execute commands. | 10.0 |
| 1997-08-01 | CVE-1999-0238 | Unspecified vulnerability in PHP 1.0/2.0/2.0B10 php.cgi allows attackers to read any file on the system. | 10.0 |