Innovate faster and cut risk with PHP experts from Zend Services.
Explore Services
See How Zend Helps Leading Hosting Providers Keep Their Managed Sites on Secure PHP
Read More
Learn PHP from PHP experts with free, on-demand, and instructor led courses.
Explore Training
Submit support requests and browse self-service resources.
Explore Support
Cross-Site Request Forgery
XML External Entity vector
2023-08-11
Information Disclosure
Missing error check and insufficient random bytes in HTTP Digest authentication for SOAP
2023-06-08
DOS vulnerability when parsing multipart request body
2023-02-14
SQL Injection
CVE-2022-31631 php: PDO::quote() may return unquoted string due to an integer overflow
2023-01-05
CVE-2022-31630 php: OOB read due to insufficient input validation in imageloadfont()
2022-10-27
Remote Code Execution
CVE-2022-31628 php: phar wrapper can produce a denial of service when using quine gzip file
2022-09-29
XML Entity Expansion
CVE-2022-31629 php: standard insecure cookie could be treated as a `__Host-` or `__Secure-` cookie by PHP applications
CVE-2022-31627 php: heap buffer overflow in finfo_buffer
2022-07-08
CVE-2022-31625 php: uninitialized array in pg_query_params() leading to RCE
2022-05-16
CVE-2022-31626 php: password of excessive length triggers buffer overflow leading to RCE