PHP : Security Vulnerabilities, CVEs, Published In March 2010 (Memory corruption)
The xmlrpc extension in PHP 5.3.1 does not properly handle a missing methodName element in the first argument to the xmlrpc_decode_request function, which allows context-dependent attackers to cause a denial of service (NULL pointer dereference and application crash) and possibly have unspecified other impact via a crafted argument.
Max CVSS
5.0
EPSS Score
2.61%
Published
2010-03-16
Updated
2010-12-10
1 vulnerabilities found