WEB APPLICATION VULNERABILITIES Standard & Premium

PHP Numeric Errors Vulnerability (CVE-2013-7226)

Description

Integer overflow in the gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an imagecrop function call with a large x dimension value, leading to a heap-based buffer overflow.

Remediation

References

Related Vulnerabilities

WordPress Improper Input Validation Vulnerability (CVE-2017-6815)

Drupal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2010-2471)

WordPress Plugin Cryptocurrency Widgets For Elementor Security Bypass (1.2.1)

WebLogic CVE-2021-35620 Vulnerability (CVE-2021-35620)

ATutor Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2008-3368)

Severity

Medium

Classification

CVE-2013-7226

Tags

Missing Update Known Vulnerabilities