Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Keyword (text search): cpe:2.3:a:php:php:5.3.7:rc2:*:*:*:*:*:*
There are 242 matching records.
Displaying matches 241 through 242.
Vuln ID Summary CVSS Severity
CVE-2011-3379

The is_a function in PHP 5.3.7 and 5.3.8 triggers a call to the __autoload function, which makes it easier for remote attackers to execute arbitrary code by providing a crafted URL and leveraging potentially unsafe behavior in certain PEAR packages and custom autoloaders.

Published: November 03, 2011; 11:55:00 AM -0400
V3.x:(not available)
V2.0: 7.5 HIGH
CVE-2011-3189

The crypt function in PHP 5.3.7, when the MD5 hash type is used, returns the value of the salt argument instead of the hashed string, which might allow remote attackers to bypass authentication via an arbitrary password, a different vulnerability than CVE-2011-2483.

Published: August 25, 2011; 10:22:48 AM -0400
V3.x:(not available)
V2.0: 4.3 MEDIUM