Vulnerability Name CVE Severity
PHP Out-of-bounds Write Vulnerability (CVE-2016-5399) CVE-2016-5399
PHP Out-of-bounds Write Vulnerability (CVE-2019-6977) CVE-2019-6977
PHP Out-of-bounds Write Vulnerability (CVE-2020-7065) CVE-2020-7065
PHP Out-of-bounds Write Vulnerability (CVE-2021-21703) CVE-2021-21703
PHP Out-of-bounds Write Vulnerability (CVE-2024-11233) CVE-2024-11233
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-1461) CVE-2007-1461
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-3997) CVE-2007-3997
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-0145) CVE-2008-0145
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-5624) CVE-2008-5624
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-5625) CVE-2008-5625
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-7002) CVE-2008-7002
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-4018) CVE-2009-4018
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2335) CVE-2012-2335
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-1635) CVE-2013-1635
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0185) CVE-2014-0185
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-8994) CVE-2015-8994
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2019-9637) CVE-2019-9637
PHP POST file upload buffer overflow vulnerabilities CVE-2002-0081
PHP Release of Invalid Pointer or Reference Vulnerability (CVE-2022-31625) CVE-2022-31625
PHP Resource Management Errors Vulnerability (CVE-2002-2309) CVE-2002-2309
PHP Resource Management Errors Vulnerability (CVE-2007-4660) CVE-2007-4660
PHP Resource Management Errors Vulnerability (CVE-2010-2225) CVE-2010-2225
PHP Resource Management Errors Vulnerability (CVE-2011-1148) CVE-2011-1148
PHP Resource Management Errors Vulnerability (CVE-2012-0830) CVE-2012-0830
PHP Resource Management Errors Vulnerability (CVE-2015-8877) CVE-2015-8877
PHP Safedir restriction bypass vulnerabilities
PHP Server-Side Request Forgery (SSRF) Vulnerability (CVE-2017-7272) CVE-2017-7272
phpThumb() fltr[] parameter command injection vulnerability CVE-2010-1598
PHP Uncontrolled Resource Consumption Vulnerability (CVE-2011-3336) CVE-2011-3336
PHP Uncontrolled Resource Consumption Vulnerability (CVE-2017-11142) CVE-2017-11142
PHP Uncontrolled Resource Consumption Vulnerability (CVE-2023-0662) CVE-2023-0662
PHPUnit Remote Code Execution CVE-2017-9841
PHP Use After Free Vulnerability (CVE-2015-1351) CVE-2015-1351
PHP Use After Free Vulnerability (CVE-2015-6831) CVE-2015-6831
PHP Use After Free Vulnerability (CVE-2017-12934) CVE-2017-12934
PHP Use of Externally-Controlled Format String Vulnerability (CVE-2011-1153) CVE-2011-1153
PHP Use of Uninitialized Resource Vulnerability (CVE-2015-3414) CVE-2015-3414
PHP version older than 4.4.1 CVE-2005-3388 CVE-2006-0097
PHP version older than 5.2.1 CVE-2007-1376 CVE-2007-1380 CVE-2007-1453 CVE-2007-1454
PHP version older than 5.2.3 CVE-2007-1900 CVE-2007-2756 CVE-2007-2872
PHP version older than 5.2.5 CVE-2007-4840 CVE-2007-4887 CVE-2007-5898 CVE-2007-5899 CVE-2007-5900
PHP version older than 5.2.6 CVE-2007-4850 CVE-2008-0599 CVE-2008-0674 CVE-2008-1384 CVE-2008-2050 CVE-2008-2051
PHP version older than 5.2.8 CVE-2008-2371 CVE-2008-2665 CVE-2008-2666 CVE-2008-2829 CVE-2008-3658 CVE-2008-3659 CVE-2008-3660
PHP Zend_Hash_Del_Key_Or_Index vulnerability CVE-2006-3017
Phusion Passenger Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2018-12029) CVE-2018-12029
Phusion Passenger Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-12027) CVE-2018-12027
Phusion Passenger Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2018-12028) CVE-2018-12028
Phusion Passenger Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-10345) CVE-2016-10345
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-1468) CVE-2013-1468
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-10678) CVE-2017-10678
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-10680) CVE-2017-10680
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-10681) CVE-2017-10681
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-17774) CVE-2017-17774
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-17827) CVE-2017-17827
Piwigo Exposure of Resource to Wrong Sphere Vulnerability (CVE-2022-26267) CVE-2022-26267
Piwigo Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-10679) CVE-2017-10679
Piwigo Improper Access Control Vulnerability (CVE-2016-10084) CVE-2016-10084
Piwigo Improper Access Control Vulnerability (CVE-2016-10085) CVE-2016-10085
Piwigo Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2012-2208) CVE-2012-2208
Piwigo Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2021-40553) CVE-2021-40553
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2009-2933) CVE-2009-2933
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-9115) CVE-2014-9115
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-1441) CVE-2015-1441
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-19215) CVE-2020-19215
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-19216) CVE-2020-19216
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-19217) CVE-2020-19217
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-27973) CVE-2021-27973
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-40313) CVE-2021-40313
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-40317) CVE-2021-40317
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-26266) CVE-2022-26266
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-32297) CVE-2022-32297
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-26876) CVE-2023-26876
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-27233) CVE-2023-27233
Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-37270) CVE-2023-37270
Piwigo Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) Vulnerability (CVE-2016-3735) CVE-2016-3735