CVE-2016-4070 | PHP up to 5.5.33/5.6.19/7.0.4 rawurlencode ext/standard/url.c php_raw_url_encode denial of service (Bug 71798)

A vulnerability classified as problematic has been found in PHP up to 5.5.33/5.6.19/7.0.4. Affected is the function php_raw_url_encode of the file ext/standard/url.c of the component rawurlencode Handler. The manipulation leads to denial of service.

This vulnerability is traded as CVE-2016-4070. It is possible to launch the attack remotely. There is no exploit available.

The real existence of this vulnerability is still doubted at the moment.

It is recommended to upgrade the affected component.

CVE-2016-4070 | PHP up to 5.5.33/5.6.19/7.0.4 rawurlencode ext/standard/url.c php_raw_url_encode denial of service (Bug 71798)

Post correlati

CVE-2024-7066 | F-logic DataCube3 1.0 HTTP POST Request config_time_sync.php ntp_server os command injection

CVE-2024-31954 | Samsung Portable SSD for T5 up to 1.6.10 on Windows uncontrolled search path

CVE-2024-41906 | Siemens SINEC Traffic Analyzer up to 1.x HTTP Response cache containing sensitive information (ssa-716317)

CVE-2022-43934 | Brocade SANnav up to 2.2.1 risky encryption