PHP : Security Vulnerabilities, CVEs, Published In July 2013 (Memory corruption)
ext/xml/xml.c in PHP before 5.3.27 does not properly consider parsing depth, which allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a crafted document that is processed by the xml_parse_into_struct function.
Max CVSS
6.8
EPSS Score
61.44%
Published
2013-07-13
Updated
2022-08-16
1 vulnerabilities found