Innovate faster and cut risk with PHP experts from Zend Services.
Explore Services
Learn PHP from PHP experts with free, on-demand, and instructor led courses.
Explore Training
Submit support requests and browse self-service resources.
Explore Support
XML eXternal Entity injection
XML External Entity vector
2023-08-11
Information Disclosure
Missing error check and insufficient random bytes in HTTP Digest authentication for SOAP
2023-06-08
Denial of Service
DOS vulnerability when parsing multipart request body
2023-02-14
SQL Injection
CVE-2022-31631 php: PDO::quote() may return unquoted string due to an integer overflow
2023-01-05
CVE-2022-31630 php: OOB read due to insufficient input validation in imageloadfont()
2022-10-27
CVE-2022-31628 php: phar wrapper can produce a denial of service when using quine gzip file
2022-09-29
Cross-Site Request Forgery
CVE-2022-31629 php: standard insecure cookie could be treated as a `__Host-` or `__Secure-` cookie by PHP applications
CVE-2022-31627 php: heap buffer overflow in finfo_buffer
2022-07-08
Remote Code Execution
CVE-2022-31625 php: uninitialized array in pg_query_params() leading to RCE
2022-05-16
CVE-2022-31626 php: password of excessive length triggers buffer overflow leading to RCE