Skip to main content
Secondary Navigation
Sitewide Search
✖
Partners
Downloads
Downloads
Plugins
My Zend Account
Customer Portal
Company
About
Leadership
Culture
Careers
AI Approach
Open Source Policy
Trust Center
Press
Contact Us
Mega Menu
☰
✖
Solutions
PHP Cloud Solutions
PHP Container Solutions
Windows Solutions
PHP Security Center
PHP Security Solutions
Hosting Provider Solutions
Zend Server Migration Solutions
Products
ZendPHP
Zend LTS
ZendHQ
Customers
Support
Explore Support
Documentation
Download Software
Download Plugins
Request Support
Request Pricing
Services
Explore Services
Black Belt Services
Migrations Services
Custom Consulting
Admin as a Service
PHP Long-Term Support
Audits
Trainings
Certifications
Resources
eBooks & Papers
Webinars
Videos
Blog
All Resources
Partners
Downloads
Downloads
Plugins
My Zend Account
Customer Portal
Company
About
Leadership
Culture
Careers
AI Approach
Open Source Policy
Trust Center
Press
Contact Us
Solutions
Show submenu for Solutions
PHP Cloud Solutions
PHP Container Solutions
Windows Solutions
PHP Security Center
PHP Security Solutions
Hosting Provider Solutions
Zend Server Migration Solutions
Products
Show submenu for Products
Featured Product
ZendPHP
PHP Runtime and Support
Try Free >
ZendPHP
PHP Runtime and Support
Zend LTS
Patches for EOL PHP
ZendHQ
Observability and Monitoring
Customers
Support
Show submenu for Support
Explore Support
Documentation
Download Software
Download Plugins
Request Support
Request Pricing
Services
Show submenu for Services
Explore Services
Black Belt Services
Migrations Services
Custom Consulting
Admin as a Service
PHP Long-Term Support
Audits
Trainings
Certifications
Resources
Show submenu for Resources
eBooks & Papers
Webinars
Videos
Blog
All Resources
2025 PHP Landscape Report
The PHP Ecosystem Changes Quickly – Are You Keeping Up?
Access Now >
Free Trial
PHP Security Center
Filter By Severity
All
Low
Moderate
High
Critical
Filter By PHP Version
8.3
8.2
8.1
8.0
7.4
7.3
7.2
7.1
7.0
5.6
Filter By Type
- Any -
CSRF (cross-site request forgery)
DoS (denial of service)
ID (information disclosure)
LFI (local file inclusion)
PE (privilege escalation)
RCE (remote code execution)
RFI (remote file inclusion)
"PHP Object Injection" (serialization vulnerabilities)
SQLi (sql injection)
XEE (xml entity expansion)
XSS (cross-site scripting)
XXE (xml external entity injection)
Reset
Page
1
2
3
4
5
6
7
8
9
10
11
Sort by severity
Ascending
Descending
Sort by type
Ascending
Descending
Sort by date
Ascending
Descending
Sort by php versions affected
Ascending
Descending
