CVE-2025-14180 | PHP up to 8.1.33/8.2.29/8.3.28/8.4.15/8.5.0 PDO PostgreSQL Driver pdo_parse_params null pointer dereference

Inserito da Angelo Barbosa | Dic 27, 2025 | CVE

A vulnerability was found in PHP up to 8.1.33/8.2.29/8.3.28/8.4.15/8.5.0. It has been classified as problematic. This vulnerability affects the function pdo_parse_params of the component PDO PostgreSQL Driver. This manipulation causes null pointer dereference.

The identification of this vulnerability is CVE-2025-14180. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is recommended.

CVE-2025-14180 | PHP up to 8.1.33/8.2.29/8.3.28/8.4.15/8.5.0 PDO PostgreSQL Driver pdo_parse_params null pointer dereference

Post correlati

CVE-2025-6941 | LatePoint Plugin up to 5.1.94 on WordPress Shortcode latepoint_resources ID cross site scripting

CVE-2023-42245 | Selesta Visual Access Manager up to 4.42.1 s_scheduledfile.php cross site scripting

CVE-2024-47134 | Jtekt Electronics Kostac PLC Programming Software up to 1.6.14.0 KPP Project File Parser out-of-bounds write

CVE-2025-25153 | djjmz Simple Auto Tag Plugin up to 1.1 on WordPress cross-site request forgery