Filtered by vendor Swoole
Subscribe
Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2021-43676 | 1 Swoole | 1 Swoole Php Framework | 2021-12-06 | 7.5 HIGH | 9.8 CRITICAL |
matyhtf framework v3.0.5 is affected by a path manipulation vulnerability in Smarty.class.php. | |||||
CVE-2019-15518 | 1 Swoole | 1 Swoole | 2019-08-27 | 5.0 MEDIUM | 5.3 MEDIUM |
Swoole before 4.2.13 allows directory traversal in swPort_http_static_handler. | |||||
CVE-2018-15503 | 1 Swoole | 1 Swoole | 2018-11-08 | 5.0 MEDIUM | 7.5 HIGH |
The unpack implementation in Swoole version 4.0.4 lacks correct size checks in the deserialization process. An attacker can craft a serialized object to exploit this vulnerability and cause a SEGV. |