Search Results (Refine Search)
- CPE Product Version: cpe:/a:php:php:7.0.0:alpha2
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2015-6527 |
The php_str_replace_in_subject function in ext/standard/string.c in PHP 7.x before 7.0.0 allows remote attackers to execute arbitrary code via a crafted value in the third argument to the str_ireplace function. Published: January 19, 2016; 12:59:01 AM -0500 |
V3.1: 7.3 HIGH V2.0: 7.5 HIGH |