| Vulnerability Name |
CVE
CWE
|
CWE |
Severity |
|
PHP Other Vulnerability (CVE-2020-7066)
|
CVE-2020-7066
|
|
Medium
|
|
PHP Other Vulnerability (CVE-2021-21707)
|
CVE-2021-21707
|
|
Medium
|
|
PHP Out-of-bounds Read Vulnerability (CVE-2015-2326)
|
CVE-2015-2326
CWE-125
|
CWE-125
|
Medium
|
|
PHP Out-of-bounds Read Vulnerability (CVE-2018-14851)
|
CVE-2018-14851
CWE-125
|
CWE-125
|
Medium
|
|
PHP Out-of-bounds Read Vulnerability (CVE-2019-11047)
|
CVE-2019-11047
CWE-125
|
CWE-125
|
Medium
|
|
PHP Out-of-bounds Read Vulnerability (CVE-2019-11050)
|
CVE-2019-11050
CWE-125
|
CWE-125
|
Medium
|
|
PHP Out-of-bounds Read Vulnerability (CVE-2020-7064)
|
CVE-2020-7064
CWE-125
|
CWE-125
|
Medium
|
|
PHP Out-of-bounds Write Vulnerability (CVE-2021-21704)
|
CVE-2021-21704
CWE-787
|
CWE-787
|
Medium
|
|
PHP Out-of-bounds Write Vulnerability (CVE-2022-4900)
|
CVE-2022-4900
CWE-787
|
CWE-787
|
Medium
|
|
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2001-1247)
|
CVE-2001-1247
CWE-264
|
CWE-264
|
Medium
|
|
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2006-3011)
|
CVE-2006-3011
CWE-264
|
CWE-264
|
Medium
|
|
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-1460)
|
CVE-2007-1460
CWE-264
|
CWE-264
|
Medium
|
|
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-3007)
|
CVE-2007-3007
CWE-264
|
CWE-264
|
Medium
|
|
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-3378)
|
CVE-2007-3378
CWE-264
|
CWE-264
|
Medium
|
|
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-4850)
|
CVE-2007-4850
CWE-264
|
CWE-264
|
Medium
|
|
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-5447)
|
CVE-2007-5447
CWE-264
|
CWE-264
|
Medium
|
|
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-5900)
|
CVE-2007-5900
CWE-264
|
CWE-264
|
Medium
|
|
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-3557)
|
CVE-2009-3557
CWE-264
|
CWE-264
|
Medium
|
|
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-3558)
|
CVE-2009-3558
CWE-264
|
CWE-264
|
Medium
|
|
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-1130)
|
CVE-2010-1130
CWE-264
|
CWE-264
|
Medium
|
|
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-3065)
|
CVE-2010-3065
CWE-264
|
CWE-264
|
Medium
|
|
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-3436)
|
CVE-2010-3436
CWE-264
|
CWE-264
|
Medium
|
|
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-2202)
|
CVE-2011-2202
CWE-264
|
CWE-264
|
Medium
|
|
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4718)
|
CVE-2011-4718
CWE-264
|
CWE-264
|
Medium
|
|
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-0057)
|
CVE-2012-0057
CWE-264
|
CWE-264
|
Medium
|
|
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3365)
|
CVE-2012-3365
CWE-264
|
CWE-264
|
Medium
|
|
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-2348)
|
CVE-2015-2348
CWE-264
|
CWE-264
|
Medium
|
|
PHP preg_replace used on user input
|
CWE-20
|
CWE-20
|
Medium
|
|
PHP register_globals Is Enabled
|
CWE-1108
|
CWE-1108
|
Medium
|
|
PHP Reliance on Cookies without Validation and Integrity Checking Vulnerability (CVE-2020-7070)
|
CVE-2020-7070
CWE-565
|
CWE-565
|
Medium
|
|
PHP Resource Management Errors Vulnerability (CVE-2006-1991)
|
CVE-2006-1991
|
|
Medium
|
|
PHP Resource Management Errors Vulnerability (CVE-2007-3806)
|
CVE-2007-3806
|
|
Medium
|
|
PHP Resource Management Errors Vulnerability (CVE-2010-1861)
|
CVE-2010-1861
|
|
Medium
|
|
PHP Resource Management Errors Vulnerability (CVE-2010-1917)
|
CVE-2010-1917
|
|
Medium
|
|
PHP Resource Management Errors Vulnerability (CVE-2010-2093)
|
CVE-2010-2093
|
|
Medium
|
|
PHP Resource Management Errors Vulnerability (CVE-2010-3710)
|
CVE-2010-3710
|
|
Medium
|
|
PHP Resource Management Errors Vulnerability (CVE-2010-4150)
|
CVE-2010-4150
|
|
Medium
|
|
PHP Resource Management Errors Vulnerability (CVE-2010-4697)
|
CVE-2010-4697
|
|
Medium
|
|
PHP Resource Management Errors Vulnerability (CVE-2011-1468)
|
CVE-2011-1468
|
|
Medium
|
|
PHP Resource Management Errors Vulnerability (CVE-2011-1657)
|
CVE-2011-1657
|
|
Medium
|
|
PHP Resource Management Errors Vulnerability (CVE-2011-3267)
|
CVE-2011-3267
|
|
Medium
|
|
PHP Resource Management Errors Vulnerability (CVE-2012-0781)
|
CVE-2012-0781
|
|
Medium
|
|
PHP Resource Management Errors Vulnerability (CVE-2012-0789)
|
CVE-2012-0789
|
|
Medium
|
|
PHP Resource Management Errors Vulnerability (CVE-2014-0237)
|
CVE-2014-0237
|
|
Medium
|
|
PHP Resource Management Errors Vulnerability (CVE-2014-2497)
|
CVE-2014-2497
|
|
Medium
|
|
PHP Resource Management Errors Vulnerability (CVE-2014-3538)
|
CVE-2014-3538
|
|
Medium
|
|
PHP Resource Management Errors Vulnerability (CVE-2015-4024)
|
CVE-2015-4024
|
|
Medium
|
|
PHP session.use_only_cookies Is Disabled
|
CWE-598
|
CWE-598
|
Medium
|
|
PHP session.use_trans_sid enabled
|
CWE-598
|
CWE-598
|
Medium
|
|
PHP socket_iovec_alloc() integer overflow
|
CVE-2003-0172
CWE-119
|
CWE-119
|
Medium
|
|
PHP super-globals-overwrite
|
CWE-1108
|
CWE-1108
|
Medium
|
|
PHP Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability (CVE-2004-0594)
|
CVE-2004-0594
CWE-367
|
CWE-367
|
Medium
|
|
PHP Uncontrolled Resource Consumption Vulnerability (CVE-2015-9253)
|
CVE-2015-9253
CWE-400
|
CWE-400
|
Medium
|
|
PHP undefined Safe_Mode_Include_Dir safemode bypass vulnerability
|
CVE-2003-0863
CWE-829
|
CWE-829
|
Medium
|
|
PHP unserialize() used on user input
|
CWE-20
|
CWE-20
|
Medium
|
|
PHP unspecified remote arbitrary file upload vulnerability
|
CVE-2004-0959
CWE-20
|
CWE-20
|
Medium
|
|
PHP upload arbitrary file disclosure vulnerability
|
CVE-2000-0860
CWE-538
|
CWE-538
|
Medium
|
|
PHP Use of Externally-Controlled Format String Vulnerability (CVE-2009-3294)
|
CVE-2009-3294
CWE-134
|
CWE-134
|
Medium
|
|
PHP Use of Externally-Controlled Format String Vulnerability (CVE-2010-2094)
|
CVE-2010-2094
CWE-134
|
CWE-134
|
Medium
|
|
PHP Use of Externally-Controlled Format String Vulnerability (CVE-2010-2950)
|
CVE-2010-2950
CWE-134
|
CWE-134
|
Medium
|
|
PHP Use of Insufficiently Random Values Vulnerability (CVE-2023-3247)
|
CVE-2023-3247
CWE-330
|
CWE-330
|
Medium
|
|
PHP Use of Password Hash With Insufficient Computational Effort Vulnerability (CVE-2023-0567)
|
CVE-2023-0567
CWE-916
|
CWE-916
|
Medium
|
|
PHP Use of Uninitialized Resource Vulnerability (CVE-2019-11038)
|
CVE-2019-11038
CWE-908
|
CWE-908
|
Medium
|
|
PHP version older than 4.3.8
|
CVE-2004-0594
CVE-2004-0595
CWE-1104
|
CWE-1104
|
Medium
|
|
PHP X Prober publicly accessible
|
CWE-200
|
CWE-200
|
Medium
|
|
Phusion Passenger Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-16355)
|
CVE-2017-16355
CWE-200
|
CWE-200
|
Medium
|
|
Phusion Passenger Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2013-4136)
|
CVE-2013-4136
CWE-59
|
CWE-59
|
Medium
|
|
Phusion Passenger Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2018-12615)
|
CVE-2018-12615
CWE-732
|
CWE-732
|
Medium
|
|
Phusion Passenger Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2119)
|
CVE-2013-2119
CWE-264
|
CWE-264
|
Medium
|
|
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-4613)
|
CVE-2014-4613
CWE-352
|
CWE-352
|
Medium
|
|
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-4614)
|
CVE-2014-4614
CWE-352
|
CWE-352
|
Medium
|
|
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-7724)
|
CVE-2018-7724
CWE-352
|
CWE-352
|
Medium
|
|
Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-33359)
|
CVE-2023-33359
CWE-352
|
CWE-352
|
Medium
|
|
Piwigo Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3790)
|
CVE-2011-3790
CWE-200
|
CWE-200
|
Medium
|
|
Piwigo Improper Access Control Vulnerability (CVE-2016-10514)
|
CVE-2016-10514
CWE-284
|
CWE-284
|
Medium
|
