Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Php Subscribe
Filtered by product Ext-http
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2016-7398 1 Php 1 Ext-http 2019-09-20 7.5 HIGH 9.8 CRITICAL
A type confusion vulnerability in the merge_param() function of php_http_params.c in PHP's pecl-http extension 3.1.0beta2 (PHP 7) and earlier as well as 2.6.0beta2 (PHP 5) and earlier allows attackers to crash PHP and possibly execute arbitrary code via crafted HTTP requests.