CVE-2018-5712
MEDIUM6.1EPSS 89.2%php5 - security update
發布日:2018/1/20修改日:2026/3/9
描述
An issue was discovered in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1. There is Reflected XSS on the PHAR 404 error page via the URI of a request for a .phar file.
受影響套件(2)
- Alpine/php5from 0, < 5.6.36-r0
- Debian/php5from 0, < 5.4.45-0+deb7u12
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.1 | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |