| Max CVSS | 6.4 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-1490 | 5.0 |
PHP before 5.1.3-RC1 might allow remote attackers to obtain portions of memory via crafted binary data sent to a script that processes user input in the html_entity_decode function and sends the encoded results back to the client, aka a "binary safet
|
13-02-2023 - 02:16 | 29-03-2006 - 21:06 | |
| CVE-2006-1990 | 5.0 |
Integer overflow in the wordwrap function in string.c in PHP 4.4.2 and 5.1.2 might allow context-dependent attackers to execute arbitrary code via certain long arguments that cause a small buffer to be allocated, which triggers a heap-based buffer ov
|
18-10-2018 - 16:37 | 24-04-2006 - 23:02 | |
| CVE-2006-0996 | 4.3 |
Cross-site scripting (XSS) vulnerability in phpinfo (info.c) in PHP 5.1.2 and 4.4.2 allows remote attackers to inject arbitrary web script or HTML via long array variables, including (1) a large number of dimensions or (2) long values, which prevents
|
11-10-2017 - 01:30 | 10-04-2006 - 18:06 | |
| CVE-2006-1991 | 6.4 |
The substr_compare function in string.c in PHP 5.1.2 allows context-dependent attackers to cause a denial of service (memory access violation) via an out-of-bounds offset argument.
|
20-07-2017 - 01:31 | 24-04-2006 - 23:02 |