Vulnerabilities > PHP > PHP > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2003-01-17 | CVE-2002-1396 | Unspecified vulnerability in PHP Heap-based buffer overflow in the wordwrap function in PHP after 4.1.2 and before 4.3.0 may allow attackers to cause a denial of service or execute arbitrary code. | 7.5 |
2002-12-31 | CVE-2002-2309 | Resource Management Errors vulnerability in PHP php.exe in PHP 3.0 through 4.2.2, when running on Apache, does not terminate properly, which allows remote attackers to cause a denial of service via a direct request without arguments. | 7.8 |
2002-07-26 | CVE-2002-0717 | Denial-Of-Service vulnerability in PHP 4.2.0/4.2.1 PHP 4.2.0 and 4.2.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an HTTP POST request with certain arguments in a multipart/form-data form, which generates an error condition that is not properly handled and causes improper memory to be freed. | 7.5 |
2002-05-16 | CVE-2002-0229 | Unspecified vulnerability in PHP Safe Mode feature (safe_mode) in PHP 3.0 through 4.1.0 allows attackers with access to the MySQL database to bypass Safe Mode access restrictions and read arbitrary files using "LOAD DATA INFILE LOCAL" SQL statements. | 7.5 |
2002-03-08 | CVE-2002-0081 | Buffer Overflow vulnerability in PHP Post File Upload Buffer overflows in (1) php_mime_split in PHP 4.1.0, 4.1.1, and 4.0.6 and earlier, and (2) php3_mime_split in PHP 3.0.x allows remote attackers to execute arbitrary code via a multipart/form-data HTTP POST request when file_uploads is enabled. | 7.5 |
1997-10-19 | CVE-1999-0068 | Unspecified vulnerability in PHP 1.0/2.0/2.0B10 CGI PHP mylog script allows an attacker to read any file on the target server. | 7.5 |
1997-04-17 | CVE-1999-0058 | Unspecified vulnerability in PHP 1.0/2.0B10 Buffer overflow in PHP cgi program, php.cgi allows shell access. | 7.5 |