PHP Group
Security Scorecard
Score
30F
Total CVEs
70
Patch Rate
0%
0 patched
Avg Response
-
days to patch
Critical Gaps
2
exploitable, no detection
Severity Breakdown
Critical0
High1
Medium1
Low0
Patch Status
Patched0 (0%)
Partial/Workaround0 (0%)
Unpatched70 (100%)
CVEs (70)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2016-7849 | CVE-2016-7849 - Unpatched PHP File Inclusion Vulnerability | N/A | - | 3145d | Unpatched |
| CVE-2016-8262 | Uninitialized Pointer Dereference in PHP | N/A | - | 3145d | Unpatched |
| CVE-2016-8524 | CVE-2016-8524 (Unpatched PHP Mail Function) | N/A | - | 3145d | Unpatched |
| CVE-2016-9508 | CVE-2016-9508: Unpatched Remote File Inclusion Vulnerability | N/A | - | 3145d | Unpatched |
| CVE-2016-9475 | CVE-2016-9475 - Unpatched PHP Session Fixation Vulnerability | N/A | - | 3145d | Unpatched |
| CVE-2016-4347 | CVE-2016-4347 - Unauthenticated Remote File Inclusion Vulnerability | N/A | - | 3481d | Unpatched |
| CVE-2012-3541 | CVE-2012-3541 - Unpatched PHP Version Vulnerability | N/A | - | 3948d | Unpatched |
| CVE-2014-9246 | CVE-2014-9246: "Buffer Overflow in PHP's curl extension" | N/A | - | 4019d | Unpatched |
| CVE-2014-5814 | Unpatched PHPMailer Vulnerability | N/A | - | 4116d | Unpatched |
| CVE-2013-5624 | Uninitialized Pointer Dereference in PHP | N/A | - | 4473d | Unpatched |