Exposição de PHP
Programming languages829
score de exposição
4.550.434
sites usam
2
em exploração
43
críticos
CVEs
1.079 resultadosCVE-2021-29454HIGHSandbox Escape by math function in smartyEPSS 1.9%CVE-2024-2757HIGHPHP mb_encode_mimeheader runs endlessly for some inputsEPSS 1.9%CVE-2023-4110LOWPHP Jabbers Availability Booking Calendar index.php cross site scriptingEPSS 1.8%CVE-2021-21704MEDIUMMultiple vulnerabilities in Firebird client extensionEPSS 1.7%CVE-2025-7160MEDIUMPHPGurukul Zoo Management System index.php sql injectionEPSS 1.7%CVE-2011-4082—A local file inclusion flaw was found in the way the phpLDAPadmin before 0.9.8 processed certain values of the "Accept-Language" HTTP headerEPSS 1.7%CVE-2020-7068MEDIUMUse of freed hash key in the phar_parse_zipfile functionEPSS 1.7%CVE-2022-31627HIGHHeap buffer overflow in finfo_bufferEPSS 1.7%CVE-2021-47749HIGHYouPHPTube <= 7.8 - Directory TraversalEPSS 1.6%CVE-2024-11233MEDIUMSingle byte overread with convert.quoted-printable-decode filterEPSS 1.6%CVE-2020-7063MEDIUMFiles added to tar with Phar::buildFromIterator have all-access permissionsEPSS 1.6%CVE-2010-4657—PHP5 before 5.4.4 allows passing invalid utf-8 strings via the xmlTextWriterWriteAttribute, which are then misparsed by libxml2. This resultEPSS 1.5%CVE-2023-4117MEDIUMPHP Jabbers Rental Property Booking index.php cross site scriptingEPSS 1.5%CVE-2023-0676LOWCross-site Scripting (XSS) - Reflected in phpipam/phpipamEPSS 1.5%CVE-2016-9493—PHP forms generated using the PHP FormMail Generator are vulnerable to stored cross-site scriptingEPSS 1.5%CVE-2022-39261HIGHTwig may load a template outside a configured directory when using the filesystem loaderEPSS 1.5%CVE-2024-3096MEDIUMPHP function password_verify can erroneously return true when argument contains NULEPSS 1.5%CVE-2023-3767CRITICALOS command injection on EasyPHP Webserver EPSS 1.5%CVE-2023-7173MEDIUMPHPGurukul Hospital Management System registration.php cross site scriptingEPSS 1.5%CVE-2023-7172HIGHPHPGurukul Hospital Management System Admin Dashboard sql injectionEPSS 1.5%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →