Search CVE reports
1 – 2 of 2 results
Some fixes available 2 of 6
The plural form formula in ngettext family of calls in php-gettext before 1.0.12 allows remote attackers to execute arbitrary code.
1 affected package
php-gettext
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| php-gettext | — | Not affected | Not in release | Not affected |
Eval injection vulnerability in php-gettext 1.0.12 and earlier allows remote attackers to execute arbitrary PHP code via a crafted plural forms header.
1 affected package
php-gettext
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| php-gettext | Not affected | Not affected | Not in release | Vulnerable |