Out-of-Bound Read in urldecode() [CVE-2020-7067]

Disclosed: 2020-10-12 23:54:27 By bigshaq To ibb

Medium

Vulnerability Details

Hi, Please see: https://bugs.php.net/bug.php?id=79465&edit=2 CVE is assigned (*CVE-2020-7067*) Fixed in 7.4.5 Release: https://www.php.net/ChangeLog-7.php#7.4.5 ## Impact A remote attacker might leak values from the memory by crafting a malicious url-encoded string into PHP's ``urldecode()``

Actions

View on HackerOne

Report Stats

Report ID: 852103
State: Closed
Substate: resolved
Upvotes: 2

Out-of-Bound Read in urldecode() [CVE-2020-7067]

Vulnerability Details

Actions

Report Stats

Share this report