[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2006-4812":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":62,"aliases":78,"duplicate_of":9,"upstream":79,"downstream":80,"duplicates":85,"related":88,"reserved_at":9,"published_at":89,"modified_at":90,"state":91,"summary":92,"references_raw":100,"kevs":226,"epss":227,"epss_history":230,"metrics":458,"affected":461},"CVE-2006-4812","Integer overflow in PHP 5 up to 5.1.6 and 4 before 4.3.0 allows remote attackers to execute arbitrary code via an argument to the unserialize PHP function with a large value for the number of array elements, which triggers the overflow in the Zend Engine ecalloc function (Zend/zend_alloc.c).",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-94","Improper Control of Generation of Code ('Code Injection')","The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.","weakness","Draft","Base","Medium",[20,24,58],{"id":21,"name":22,"techniques":23},"CAPEC-242","Code Injection",[],{"id":25,"name":26,"techniques":27},"CAPEC-35","Leverage Executable Code in Non-Executable Files",[28,39,46],{"id":29,"name":30,"tactics":31,"countermeasures":38},"T1027.006","HTML Smuggling",[32,35],{"id":33,"name":34},"TA0030","Defense Evasion",{"id":36,"name":37},"TA0005","Stealth",[],{"id":40,"name":41,"tactics":42,"countermeasures":45},"T1027.009","Embedded Payloads",[43,44],{"id":33,"name":34},{"id":36,"name":37},[],{"id":47,"name":48,"tactics":49,"countermeasures":52},"T1564.009","Resource Forking",[50,51],{"id":33,"name":34},{"id":36,"name":37},[53],{"id":54,"name":55,"tactic":56},"D3-FFV","File Format Verification",{"name":57},"Isolate",{"id":59,"name":60,"techniques":61},"CAPEC-77","Manipulating User-Controlled Variables",[],[63],{"_key":64,"name":65,"source":66,"url":67,"maturity":68,"reliability_score":69,"verified":70,"type":71,"platforms":72,"requires_auth":9,"exploitdb":74,"metasploit":9},"28760","PHP 3 \u003C 5 - ZendEngine ECalloc Integer Overflow","exploit-database","https://www.exploit-db.com/exploits/28760","weaponized",0.8,true,"remote",[73],"php",{"verified":70,"type":71,"platform":73,"file":75,"codes":76},"exploits/php/remote/28760.php",[7,77],"OSVDB-29510",[],[],[81,83],{"_key":82},"RHSA-2006:0688",{"_key":84},"RHSA-2006:0708",[86],{"_key":87},"CVE-2006-4170",[],"2006-10-09T18:00:00.000Z","2024-08-07T19:23:41.021Z","Modified",{"cisa_kev":93,"cisa_ransomware":93,"cisa_vendor":9,"epss_severity":94,"epss_score":95,"severity":94,"severity_score":96,"severity_version":97,"severity_source":98,"severity_vector":99,"severity_status":91},false,"high",0.39413,10,"v2.0","nvd","AV:N/AC:L/Au:N/C:C/I:C/A:C",[101,108,112,119,123,127,132,138,143,148,153,158,162,166,171,176,180,185,189,194,198,203,209,213,218,222],{"url":102,"sources":103,"tags":105},"http://secunia.com/advisories/22300",[104,98],"cve.org",[106,107],"Third Party Advisory","X Refsource SECUNIA",{"url":109,"sources":110,"tags":111},"http://secunia.com/advisories/22650",[104,98],[106,107],{"url":113,"sources":114,"tags":115},"http://securitytracker.com/id?1016984",[104,98],[116,117,118],"VDB Entry","X Refsource SECTRACK","Patch",{"url":120,"sources":121,"tags":122},"http://secunia.com/advisories/22281",[104,98],[106,107],{"url":124,"sources":125,"tags":126},"http://secunia.com/advisories/22338",[104,98],[106,107],{"url":128,"sources":129,"tags":130},"http://www.securityfocus.com/bid/20349",[104,98],[116,131],"X Refsource BID",{"url":133,"sources":134,"tags":135},"http://www.securityfocus.com/archive/1/448953/100/0/threaded",[104,98],[136,137],"Vendor Advisory","X Refsource OPENPKG",{"url":139,"sources":140,"tags":141},"http://www.gentoo.org/security/en/glsa/glsa-200610-14.xml",[104,98],[136,142],"X Refsource GENTOO",{"url":144,"sources":145,"tags":146},"http://www.trustix.org/errata/2006/0055",[104,98],[136,147],"X Refsource TRUSTIX",{"url":149,"sources":150,"tags":151},"http://rhn.redhat.com/errata/RHSA-2006-0688.html",[104,98],[136,152],"X Refsource REDHAT",{"url":154,"sources":155,"tags":156},"http://www.ubuntu.com/usn/usn-362-1",[104,98],[136,157],"X Refsource UBUNTU",{"url":159,"sources":160,"tags":161},"http://rhn.redhat.com/errata/RHSA-2006-0708.html",[104,98],[136,152,118],{"url":163,"sources":164,"tags":165},"http://secunia.com/advisories/22538",[104,98],[106,107],{"url":167,"sources":168,"tags":169},"http://securityreason.com/securityalert/1691",[104,98],[106,170],"X Refsource SREASON",{"url":172,"sources":173,"tags":174},"http://www.hardened-php.net/advisory_092006.133.html",[104,98],[175,136],"X Refsource MISC",{"url":177,"sources":178,"tags":179},"http://secunia.com/advisories/22533",[104,98],[106,107],{"url":181,"sources":182,"tags":183},"http://www.hardened-php.net/files/CVE-2006-4812.patch",[104,98],[184,118],"X Refsource CONFIRM",{"url":186,"sources":187,"tags":188},"http://support.avaya.com/elmodocs2/security/ASA-2006-223.htm",[104,98],[184],{"url":190,"sources":191,"tags":192},"https://exchange.xforce.ibmcloud.com/vulnerabilities/29362",[104,98],[116,193],"X Refsource XF",{"url":195,"sources":196,"tags":197},"http://cvs.php.net/viewvc.cgi/ZendEngine2/zend_alloc.c?r1=1.161&r2=1.162",[104,98],[184],{"url":199,"sources":200,"tags":201},"http://lists.suse.com/archive/suse-security-announce/2006-Oct/0002.html",[104,98],[136,202],"X Refsource SUSE",{"url":204,"sources":205,"tags":206},"http://www.securityfocus.com/archive/1/448014/100/0/threaded",[104,98],[207,208],"Mailing List","X Refsource BUGTRAQ",{"url":210,"sources":211,"tags":212},"http://secunia.com/advisories/22331",[104,98],[106,107],{"url":214,"sources":215,"tags":216},"http://www.vupen.com/english/advisories/2006/3922",[104,98],[116,217],"X Refsource VUPEN",{"url":219,"sources":220,"tags":221},"http://secunia.com/advisories/22280",[104,98],[106,107,118,136],{"url":223,"sources":224,"tags":225},"http://support.avaya.com/elmodocs2/security/ASA-2006-234.htm",[104,98],[184],[],{"date":228,"score":95,"percentile":229},"2026-06-04",0.97374,[231,234,236,239,242,244,247,249,251,254,257,260,262,264,266,268,270,273,275,277,279,281,283,285,287,289,291,293,296,299,302,304,306,309,311,314,316,319,322,325,328,330,333,336,339,342,344,346,348,350,352,354,357,360,364,367,370,372,375,378,380,382,385,388,391,393,396,399,401,403,405,407,410,413,416,418,420,423,426,429,432,435,437,440,442,444,447,450,452,455],{"date":232,"score":95,"percentile":233},"2025-11-04",0.97114,{"date":235,"score":95,"percentile":233},"2025-11-05",{"date":237,"score":95,"percentile":238},"2025-11-06",0.97116,{"date":240,"score":95,"percentile":241},"2025-11-07",0.97118,{"date":243,"score":95,"percentile":238},"2025-11-08",{"date":245,"score":95,"percentile":246},"2025-11-09",0.97117,{"date":248,"score":95,"percentile":238},"2025-11-10",{"date":250,"score":95,"percentile":246},"2025-11-11",{"date":252,"score":95,"percentile":253},"2025-11-12",0.9712,{"date":255,"score":95,"percentile":256},"2025-11-13",0.97121,{"date":258,"score":95,"percentile":259},"2025-11-14",0.97122,{"date":261,"score":95,"percentile":241},"2025-11-15",{"date":263,"score":95,"percentile":253},"2025-11-16",{"date":265,"score":95,"percentile":253},"2025-11-17",{"date":267,"score":95,"percentile":256},"2025-11-18",{"date":269,"score":95,"percentile":259},"2025-11-19",{"date":271,"score":95,"percentile":272},"2025-11-20",0.97124,{"date":274,"score":95,"percentile":259},"2025-11-21",{"date":276,"score":95,"percentile":253},"2025-11-22",{"date":278,"score":95,"percentile":253},"2025-11-23",{"date":280,"score":95,"percentile":256},"2025-11-24",{"date":282,"score":95,"percentile":256},"2025-11-25",{"date":284,"score":95,"percentile":256},"2025-11-26",{"date":286,"score":95,"percentile":259},"2025-11-27",{"date":288,"score":95,"percentile":256},"2025-11-28",{"date":290,"score":95,"percentile":253},"2025-11-29",{"date":292,"score":95,"percentile":241},"2025-11-30",{"date":294,"score":95,"percentile":295},"2025-12-01",0.97141,{"date":297,"score":95,"percentile":298},"2025-12-02",0.97143,{"date":300,"score":95,"percentile":301},"2025-12-03",0.97144,{"date":303,"score":95,"percentile":259},"2025-12-04",{"date":305,"score":95,"percentile":259},"2025-12-05",{"date":307,"score":95,"percentile":308},"2025-12-06",0.97123,{"date":310,"score":95,"percentile":272},"2025-12-07",{"date":312,"score":95,"percentile":313},"2025-12-08",0.97126,{"date":315,"score":95,"percentile":313},"2025-12-09",{"date":317,"score":95,"percentile":318},"2025-12-10",0.97131,{"date":320,"score":95,"percentile":321},"2025-12-11",0.97133,{"date":323,"score":95,"percentile":324},"2025-12-12",0.97134,{"date":326,"score":95,"percentile":327},"2025-12-13",0.97136,{"date":329,"score":95,"percentile":321},"2025-12-14",{"date":331,"score":95,"percentile":332},"2025-12-15",0.97135,{"date":334,"score":95,"percentile":335},"2025-12-16",0.97137,{"date":337,"score":95,"percentile":338},"2025-12-17",0.9714,{"date":340,"score":95,"percentile":341},"2025-12-18",0.97139,{"date":343,"score":95,"percentile":295},"2025-12-19",{"date":345,"score":95,"percentile":338},"2025-12-20",{"date":347,"score":95,"percentile":341},"2025-12-21",{"date":349,"score":95,"percentile":341},"2025-12-22",{"date":351,"score":95,"percentile":338},"2025-12-23",{"date":353,"score":95,"percentile":298},"2025-12-24",{"date":355,"score":95,"percentile":356},"2025-12-25",0.97146,{"date":358,"score":95,"percentile":359},"2025-12-26",0.97147,{"date":361,"score":362,"percentile":363},"2025-12-27",0.42997,0.97375,{"date":365,"score":95,"percentile":366},"2025-12-28",0.97148,{"date":368,"score":95,"percentile":369},"2025-12-29",0.97149,{"date":371,"score":95,"percentile":369},"2025-12-30",{"date":373,"score":95,"percentile":374},"2025-12-31",0.97154,{"date":376,"score":95,"percentile":377},"2026-01-01",0.9718,{"date":379,"score":95,"percentile":377},"2026-01-02",{"date":381,"score":95,"percentile":377},"2026-01-03",{"date":383,"score":95,"percentile":384},"2026-01-04",0.97156,{"date":386,"score":95,"percentile":387},"2026-01-05",0.97158,{"date":389,"score":95,"percentile":390},"2026-01-06",0.97159,{"date":392,"score":95,"percentile":390},"2026-01-07",{"date":394,"score":95,"percentile":395},"2026-01-08",0.9716,{"date":397,"score":95,"percentile":398},"2026-01-09",0.97162,{"date":400,"score":95,"percentile":398},"2026-01-10",{"date":402,"score":95,"percentile":398},"2026-01-11",{"date":404,"score":95,"percentile":398},"2026-01-12",{"date":406,"score":95,"percentile":398},"2026-01-13",{"date":408,"score":95,"percentile":409},"2026-01-14",0.97166,{"date":411,"score":95,"percentile":412},"2026-01-15",0.97167,{"date":414,"score":95,"percentile":415},"2026-01-16",0.9717,{"date":417,"score":95,"percentile":415},"2026-01-17",{"date":419,"score":95,"percentile":415},"2026-01-18",{"date":421,"score":95,"percentile":422},"2026-01-19",0.97171,{"date":424,"score":95,"percentile":425},"2026-01-20",0.97172,{"date":427,"score":95,"percentile":428},"2026-01-21",0.97173,{"date":430,"score":95,"percentile":431},"2026-01-22",0.97174,{"date":433,"score":95,"percentile":434},"2026-01-23",0.97177,{"date":436,"score":95,"percentile":434},"2026-01-24",{"date":438,"score":95,"percentile":439},"2026-01-25",0.97179,{"date":441,"score":95,"percentile":377},"2026-01-26",{"date":443,"score":95,"percentile":377},"2026-01-27",{"date":445,"score":95,"percentile":446},"2026-01-28",0.97182,{"date":448,"score":95,"percentile":449},"2026-01-29",0.97183,{"date":451,"score":95,"percentile":446},"2026-01-30",{"date":453,"score":95,"percentile":454},"2026-01-31",0.97184,{"date":456,"score":95,"percentile":457},"2026-02-01",0.97207,[459],{"source":98,"cvss_v2_0":460,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":96,"baseSeverity":9,"vectorString":99,"impactScore":96,"exploitabilityScore":96},[462],{"ecosystem":9,"name":463,"vendor":9,"product":463,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":464},"PHP",[465,468,470,472,474,476,478,480,482,484,486,488,490,492,494,496,498,500,502,504,506,508,510,512,514,516,518,520,522,524,526,528,530,532,534,536,538,540],{"version":466,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0","cpe",{"version":469,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.1",{"version":471,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.1:patch1",{"version":473,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.1:patch2",{"version":475,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.2",{"version":477,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.3",{"version":479,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.3:patch1",{"version":481,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.4",{"version":483,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.5",{"version":485,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.6",{"version":487,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.7",{"version":489,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.7:rc1",{"version":491,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.7:rc2",{"version":493,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.7:rc3",{"version":495,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.0",{"version":497,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.1",{"version":499,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.2",{"version":501,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.2",{"version":503,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.2.0",{"version":505,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.2.1",{"version":507,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.2.2",{"version":509,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.2.3",{"version":511,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0:rc1",{"version":513,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0:rc2",{"version":515,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0:rc3",{"version":517,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0.0",{"version":519,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0.1",{"version":521,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0.2",{"version":523,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0.3",{"version":525,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0.4",{"version":527,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0.5",{"version":529,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.1.0",{"version":531,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.1.1",{"version":533,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.1.2",{"version":535,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.1.3",{"version":537,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.1.4",{"version":539,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.1.5",{"version":541,"is_range":93,"range_type":467,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.1.6"]