Vulnerabilities > PHP > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-01-12 | CVE-2001-1385 | The Apache module for PHP 4.0.0 through PHP 4.0.4, when disabled with the 'engine = off' option for a virtual host, may disable PHP for other virtual hosts, which could cause Apache to serve the source code of PHP scripts. | 5.0 |
| 2000-11-14 | CVE-2000-0860 | Unspecified vulnerability in PHP The file upload capability in PHP versions 3 and 4 allows remote attackers to read arbitrary files by setting hidden form fields whose names match the names of internal PHP script variables. | 5.0 |
| 1997-10-16 | CVE-1999-0346 | Unspecified vulnerability in PHP FI CGI PHP mlog script allows an attacker to read any file on the target server. | 5.0 |