Description
ext/wddx/wddx.c in PHP before 5.6.28 and 7.x before 7.0.13 allows remote attackers to cause a denial of service (NULL pointer dereference) via crafted serialized data in a wddxPacket XML document, as demonstrated by a PDORow string.
Remediation
References
Related Vulnerabilities
MySQL CVE-2022-21641 Vulnerability (CVE-2022-21641)
WordPress Plugin Drug Search Cross-Site Scripting (1.0.0)
WordPress Plugin Import and export users and customers Cross-Site Scripting (1.14.1.2)
Caddy Web Server Authentication Bypass by Spoofing Vulnerability (CVE-2023-50463)
Oracle Database Server CVE-2013-3751 Vulnerability (CVE-2013-3751)