WEB APPLICATION VULNERABILITIES Standard & Premium

PHP Numeric Errors Vulnerability (CVE-2013-7226)

Description

Integer overflow in the gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an imagecrop function call with a large x dimension value, leading to a heap-based buffer overflow.

Remediation

References

Related Vulnerabilities

Oracle JRE CVE-2019-2958 Vulnerability (CVE-2019-2958)

Python CVE-2019-17514 Vulnerability (CVE-2019-17514)

OpenSSL Improper Access Control Vulnerability (CVE-2016-7054)

SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-8156)

WordPress Plugin easyping-website subscriptions done right PHP Object Injection (0.0.1)

Severity

Medium

Classification

CVE-2013-7226

Tags

Missing Update Known Vulnerabilities