PHP Group

Security Scorecard

Score

30F

Total CVEs

70

Patch Rate

0%

0 patched

Avg Response

-

days to patch

Critical Gaps

2

exploitable, no detection

Severity Breakdown

Critical0

High1

Medium1

Low0

Patch Status

Patched0 (0%)

Partial/Workaround0 (0%)

Unpatched70 (100%)

CVEs (70)

CVE ID	Title	Severity	Score	Days	Patch
CVE-2014-4069	CVE-2014-4069: Unpatched PHP Code Injection Vulnerability	N/A	-	3143d	Unpatched
CVE-2014-7095	Uninitialized Pointer Dereference in PHP	N/A	-	3143d	Unpatched
CVE-2014-7541	CVE-2014-7541: Unpatched Remote File Inclusion Vulnerability	N/A	-	3143d	Unpatched
CVE-2014-7790	CVE-2014-7790: Unpatched Remote File Inclusion Vulnerability in PHP	N/A	-	3143d	Unpatched
CVE-2014-8292	CVE-2014-8292 - "Unauthenticated Remote File Inclusion"	N/A	-	3144d	Unpatched
CVE-2014-8855	Unpatched PHPMailer Vulnerability	N/A	-	3144d	Unpatched
CVE-2014-8931	CVE-2014-8931: Unpatched PHP Version Vulnerability	N/A	-	3144d	Unpatched
CVE-2014-8973	CVE-2014-8973 (Unpatched PHPMailer Vulnerability)	N/A	-	3144d	Unpatched
CVE-2014-9210	Uninitialized Pointer Dereference in PHP	N/A	-	3144d	Unpatched
CVE-2015-2394	Uninitialized Pointer Dereference in PHP	N/A	-	3144d	Unpatched