CVE-2024-5458 | PHP up to 8.1.28/8.2.19/8.3.7 URL Filter filter_var data authenticity (Nessus ID 208047)

October 6, 2024
2:57 am

A vulnerability was found in PHP up to 8.1.28/8.2.19/8.3.7. It has been rated as critical. Affected by this issue is the function filter_var of the component URL Filter Handler. The manipulation leads to insufficient verification of data authenticity.

This vulnerability is handled as CVE-2024-5458. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-5458 | PHP up to 8.1.28/8.2.19/8.3.7 URL Filter filter_var data authenticity (Nessus ID 208047)

Elvescore.io

Recent Posts

CVE-2025-27496 – Snowflake Driver: Client-Side Encryption Master Key Disclosure Vulnerability

CVE-2025-2229 – Apache Struts AES-128 Token Generation Vulnerability

CVE-2025-2230 – Windows AuthContext Token Replay Attack and Authentication Bypass Vulnerability

CVE-2025-1432 – Autodesk AutoCAD Use-After-Free Vulnerability

CVE-2025-1433 – Autodesk AutoCAD MODEL File Out-of-Bounds Read Vulnerability

CVE-2025-1649 – Autodesk AutoCAD Uninitialized Variable Vulnerability in CATPRODUCT File Parsing

CVE-2024-5458 | PHP up to 8.1.28/8.2.19/8.3.7 URL Filter filter_var data authenticity (Nessus ID 208047)

CVE-2024-5458 | PHP up to 8.1.28/8.2.19/8.3.7 URL Filter filter_var data authenticity (Nessus ID 208047)