Where
-Infinity
0

Trending

Last week
Last month
Last year

PostgreSQL postgresqlSQL Injection, Null Pointer Dereference

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2378689

PHP PHPUse After Free

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2357531

BleepingComputerCritical PHP RCE vulnerability mass exploited in new attacks

Exploited
Zeroday
First published (updated )
News
BleepingComputer

Phpgurukul Land Record System ProjectSQL Injection

Risk 30
Severity
5.5
EPSS
0.08%
First published (updated )
CVE-2025-25462

PHP PHPIn PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before 8.3.12, when using PHP-FPM SA…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-2317144
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

The PHP Group PHPAccording to https://www.php.net/manual/en/security.cgi-bin.force-redirect.php, the configuration di…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2317051

PHP security releases 8.1.28, 8.2.18, & 8.3.6

First published (updated )
https://seclists.org/oss-sec/2024/q2/113

composer/phenx/php-svg-libphp-svg-lib lacks path validation on font through SVG inline styles

Risk 62
Severity
9.8
EPSS
0.04%
First published (updated )
CVE-2024-25117

PHP PHPBuffer overflow and overread in phar_dir_read()

Risk 92
Severity
9.8
First published (updated )
CVE-2023-3824

PHP PHPSecurity issue with external entity loading in XML without enabling it

Risk 68
Severity
8.6
First published (updated )
CVE-2023-3823
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

ubuntu/php8.1Missing error check and insufficient random bytes in HTTP Digest authentication for SOAP

Risk 24
Severity
4.3
First published (updated )
CVE-2023-3247

PHP PHPPotential buffer overflow in php_cli_server_startup_workers

Risk 37
Severity
6.2
First published (updated )
CVE-2022-4900

PHP PHPCVE-2023-0567[0]: PHP: Password_verify() always return true with some hash [0] https://security-tra…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-2170771

PHP PHPIn PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, core path resolution functio…

Risk 18
Severity
4
First published (updated )
REDHAT-BUG-2170770

PHP PHPIn PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, excessive number of parts in…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2170761
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

F5 BIG-IPArray overrun in common path resolve code

Risk 79
Severity
8.1
First published (updated )
CVE-2023-0568

F5 BIG-IPDoS vulnerability when parsing multipart request body

Risk 46
Severity
7.5
First published (updated )
CVE-2023-0662

PHP PHPPDO::quote() may return unquoted string

Risk 67
Severity
9.1
First published (updated )
CVE-2022-31631

PHP PHPOOB read due to insufficient input validation in imageloadfont()

Risk 53
Severity
7.1
First published (updated )
CVE-2022-31630

PHP PHPInteger Overflow, Buffer Overflow

Risk 89
Severity
9.8
First published (updated )
CVE-2022-37454
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

PHP PHP$_COOKIE names string replacement (. -> _): cookie integrity vulnerabilities

Risk 39
Severity
6.5
First published (updated )
CVE-2022-31629

PHP PHPphar wrapper can occur dos when using quine gzip file

Risk 33
Severity
5.5
First published (updated )
CVE-2022-31628

PHP PHPHeap buffer overflow in finfo_buffer

Risk 86
Severity
9.8
First published (updated )
CVE-2022-31627

PHP PHPmysqlnd/pdo password buffer overflow

Risk 79
Severity
8.8
First published (updated )
CVE-2022-31626

PHP PHPSpecial characters break path parsing in XML functions

Risk 28
Severity
5.3
First published (updated )
CVE-2021-21707
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

PHP PHPPHP-FPM memory access in root process leading to privilege escalation

Risk 65
Severity
7.8
First published (updated )
CVE-2021-21703

PHP PHPZipArchive::extractTo may extract outside of destination dir

Risk 37
Severity
6.5
First published (updated )
CVE-2021-21706

PHP PHPIncorrect URL validation in FILTER_VALIDATE_URL

Risk 27
Severity
5.3
First published (updated )
CVE-2021-21705

PHP PHPMultiple vulnerabilities in Firebird client extension

Risk 35
Severity
5.9
First published (updated )
CVE-2021-21704

Xmbforum2 XmbXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2021-29399
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203