[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2007-4657":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":75,"aliases":76,"duplicate_of":9,"upstream":77,"downstream":78,"duplicates":85,"related":86,"reserved_at":9,"published_at":87,"modified_at":88,"state":89,"summary":90,"references_raw":99,"kevs":233,"epss":234,"epss_history":237,"metrics":493,"affected":498},"CVE-2007-4657","Multiple integer overflows in PHP 4 before 4.4.8, and PHP 5 before 5.2.4, allow remote attackers to obtain sensitive information (memory contents) or cause a denial of service (thread crash) via a large len value to the (1) strspn or (2) strcspn function, which triggers an out-of-bounds read.  NOTE: this affects different product versions than CVE-2007-3996.",null,[11,68],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],{"_key":69,"id":69,"name":70,"description":71,"type":72,"status":73,"abstraction":9,"likelihood_of_exploit":9,"capec":74},"CWE-189","Numeric Errors","Weaknesses in this category are related to improper calculation or conversion of numbers.","category","Draft",[],[],[],[],[79,81,83],{"_key":80},"DSA-1444-1",{"_key":82},"DSA-1578-1",{"_key":84},"DTSA-61-1",[],[],"2007-09-04T22:00:00.000Z","2024-08-07T15:01:10.099Z","Modified",{"cisa_kev":91,"cisa_ransomware":91,"cisa_vendor":9,"epss_severity":92,"epss_score":93,"severity":94,"severity_score":95,"severity_version":96,"severity_source":97,"severity_vector":98,"severity_status":89},false,"low",0.03135,"high",7.5,"v2.0","nvd","AV:N/AC:L/Au:N/C:P/I:P/A:P",[100,107,113,117,122,127,133,138,142,146,152,157,161,167,172,176,181,185,189,193,197,201,205,209,213,217,221,225,229],{"url":101,"sources":102,"tags":104},"http://secunia.com/advisories/30288",[103,97],"cve.org",[105,106],"Third Party Advisory","X Refsource SECUNIA",{"url":108,"sources":109,"tags":110},"https://exchange.xforce.ibmcloud.com/vulnerabilities/36388",[103,97],[111,112,105],"VDB Entry","X Refsource XF",{"url":114,"sources":115,"tags":116},"http://secunia.com/advisories/26822",[103,97],[105,106],{"url":118,"sources":119,"tags":120},"https://launchpad.net/bugs/173043",[103,97],[121,105],"X Refsource CONFIRM",{"url":123,"sources":124,"tags":125},"http://www.vupen.com/english/advisories/2008/0059",[103,97],[111,126,105],"X Refsource VUPEN",{"url":128,"sources":129,"tags":130},"http://www.debian.org/security/2008/dsa-1444",[103,97],[131,132,105],"Vendor Advisory","X Refsource DEBIAN",{"url":134,"sources":135,"tags":136},"http://www.gentoo.org/security/en/glsa/glsa-200710-02.xml",[103,97],[131,137,105],"X Refsource GENTOO",{"url":139,"sources":140,"tags":141},"http://secunia.com/advisories/27864",[103,97],[105,106],{"url":143,"sources":144,"tags":145},"http://www.php.net/releases/4_4_8.php",[103,97],[121,131],{"url":147,"sources":148,"tags":149},"http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.335136",[103,97],[131,150,151,105],"X Refsource SLACKWARE","Mailing List",{"url":153,"sources":154,"tags":155},"http://www.php.net/ChangeLog-5.php#5.2.4",[103,97],[121,156,131],"Patch",{"url":158,"sources":159,"tags":160},"http://secunia.com/advisories/28936",[103,97],[105,106],{"url":162,"sources":163,"tags":164},"http://www.trustix.org/errata/2007/0026/",[103,97],[131,165,166],"X Refsource TRUSTIX","Broken Link",{"url":168,"sources":169,"tags":170},"https://usn.ubuntu.com/549-1/",[103,97],[131,171,105],"X Refsource UBUNTU",{"url":173,"sources":174,"tags":175},"https://issues.rpath.com/browse/RPL-1693",[103,97],[121,166],{"url":177,"sources":178,"tags":179},"http://secweb.se/en/advisories/php-strcspn-information-leak-vulnerability/",[103,97],[180,105],"X Refsource MISC",{"url":182,"sources":183,"tags":184},"http://secunia.com/advisories/28249",[103,97],[105,106],{"url":186,"sources":187,"tags":188},"http://www.debian.org/security/2008/dsa-1578",[103,97],[131,132,105],{"url":190,"sources":191,"tags":192},"https://issues.rpath.com/browse/RPL-1702",[103,97],[121,166],{"url":194,"sources":195,"tags":196},"http://secunia.com/advisories/26838",[103,97],[105,106],{"url":198,"sources":199,"tags":200},"http://secunia.com/advisories/27377",[103,97],[105,106],{"url":202,"sources":203,"tags":204},"http://www.php.net/ChangeLog-4.php",[103,97],[121,131],{"url":206,"sources":207,"tags":208},"http://secunia.com/advisories/27102",[103,97],[105,106],{"url":210,"sources":211,"tags":212},"http://www.vupen.com/english/advisories/2007/3023",[103,97],[111,126,105],{"url":214,"sources":215,"tags":216},"http://www.php.net/releases/5_2_4.php",[103,97],[121,131],{"url":218,"sources":219,"tags":220},"https://exchange.xforce.ibmcloud.com/vulnerabilities/39399",[103,97],[111,112,105],{"url":222,"sources":223,"tags":224},"http://secunia.com/advisories/28318",[103,97],[105,106],{"url":226,"sources":227,"tags":228},"http://www.ubuntu.com/usn/usn-549-2",[103,97],[131,171,166],{"url":230,"sources":231,"tags":232},"http://secunia.com/advisories/26642",[103,97],[105,106],[],{"date":235,"score":93,"percentile":236},"2026-06-04",0.87119,[238,242,245,248,251,254,257,260,262,265,268,270,273,276,279,282,285,288,291,293,295,297,300,302,304,306,309,312,315,318,321,324,327,329,331,333,336,340,343,346,349,352,354,357,360,363,366,369,372,375,378,381,384,387,391,394,397,399,402,405,408,411,414,416,418,421,424,426,430,433,436,439,442,445,448,451,454,457,460,462,465,468,471,474,477,479,482,484,487,490],{"date":239,"score":240,"percentile":241},"2025-11-04",0.02247,0.84011,{"date":243,"score":240,"percentile":244},"2025-11-05",0.84016,{"date":246,"score":240,"percentile":247},"2025-11-06",0.84019,{"date":249,"score":240,"percentile":250},"2025-11-07",0.84024,{"date":252,"score":240,"percentile":253},"2025-11-08",0.84029,{"date":255,"score":240,"percentile":256},"2025-11-09",0.84022,{"date":258,"score":240,"percentile":259},"2025-11-10",0.84017,{"date":261,"score":240,"percentile":250},"2025-11-11",{"date":263,"score":240,"percentile":264},"2025-11-12",0.84035,{"date":266,"score":240,"percentile":267},"2025-11-13",0.84043,{"date":269,"score":240,"percentile":267},"2025-11-14",{"date":271,"score":240,"percentile":272},"2025-11-15",0.84036,{"date":274,"score":240,"percentile":275},"2025-11-16",0.84039,{"date":277,"score":240,"percentile":278},"2025-11-17",0.8404,{"date":280,"score":240,"percentile":281},"2025-11-18",0.83212,{"date":283,"score":240,"percentile":284},"2025-11-19",0.83213,{"date":286,"score":240,"percentile":287},"2025-11-20",0.83218,{"date":289,"score":240,"percentile":290},"2025-11-21",0.84053,{"date":292,"score":240,"percentile":290},"2025-11-22",{"date":294,"score":240,"percentile":267},"2025-11-23",{"date":296,"score":240,"percentile":267},"2025-11-24",{"date":298,"score":240,"percentile":299},"2025-11-25",0.84038,{"date":301,"score":240,"percentile":275},"2025-11-26",{"date":303,"score":240,"percentile":299},"2025-11-27",{"date":305,"score":240,"percentile":247},"2025-11-28",{"date":307,"score":240,"percentile":308},"2025-11-29",0.84034,{"date":310,"score":240,"percentile":311},"2025-11-30",0.84037,{"date":313,"score":240,"percentile":314},"2025-12-01",0.84109,{"date":316,"score":240,"percentile":317},"2025-12-02",0.8411,{"date":319,"score":240,"percentile":320},"2025-12-03",0.84112,{"date":322,"score":240,"percentile":323},"2025-12-04",0.84041,{"date":325,"score":240,"percentile":326},"2025-12-05",0.84047,{"date":328,"score":240,"percentile":326},"2025-12-06",{"date":330,"score":240,"percentile":323},"2025-12-07",{"date":332,"score":240,"percentile":267},"2025-12-08",{"date":334,"score":240,"percentile":335},"2025-12-09",0.8406,{"date":337,"score":338,"percentile":339},"2025-12-10",0.0195,0.82942,{"date":341,"score":338,"percentile":342},"2025-12-11",0.82958,{"date":344,"score":338,"percentile":345},"2025-12-12",0.82966,{"date":347,"score":338,"percentile":348},"2025-12-13",0.82965,{"date":350,"score":338,"percentile":351},"2025-12-14",0.82963,{"date":353,"score":338,"percentile":351},"2025-12-15",{"date":355,"score":338,"percentile":356},"2025-12-16",0.82972,{"date":358,"score":338,"percentile":359},"2025-12-17",0.82982,{"date":361,"score":338,"percentile":362},"2025-12-18",0.82987,{"date":364,"score":338,"percentile":365},"2025-12-19",0.82992,{"date":367,"score":338,"percentile":368},"2025-12-20",0.82985,{"date":370,"score":338,"percentile":371},"2025-12-21",0.82983,{"date":373,"score":338,"percentile":374},"2025-12-22",0.82986,{"date":376,"score":338,"percentile":377},"2025-12-23",0.82991,{"date":379,"score":338,"percentile":380},"2025-12-24",0.83,{"date":382,"score":338,"percentile":383},"2025-12-25",0.83015,{"date":385,"score":338,"percentile":386},"2025-12-26",0.8302,{"date":388,"score":389,"percentile":390},"2025-12-27",0.02378,0.84616,{"date":392,"score":338,"percentile":393},"2025-12-28",0.83007,{"date":395,"score":338,"percentile":396},"2025-12-29",0.82999,{"date":398,"score":338,"percentile":393},"2025-12-30",{"date":400,"score":338,"percentile":401},"2025-12-31",0.83021,{"date":403,"score":338,"percentile":404},"2026-01-01",0.83093,{"date":406,"score":338,"percentile":407},"2026-01-02",0.8309,{"date":409,"score":338,"percentile":410},"2026-01-03",0.83084,{"date":412,"score":338,"percentile":413},"2026-01-04",0.83004,{"date":415,"score":338,"percentile":396},"2026-01-05",{"date":417,"score":338,"percentile":413},"2026-01-06",{"date":419,"score":338,"percentile":420},"2026-01-07",0.83006,{"date":422,"score":338,"percentile":423},"2026-01-08",0.83014,{"date":425,"score":338,"percentile":423},"2026-01-09",{"date":427,"score":428,"percentile":429},"2026-01-10",0.02117,0.83665,{"date":431,"score":428,"percentile":432},"2026-01-11",0.83664,{"date":434,"score":428,"percentile":435},"2026-01-12",0.8366,{"date":437,"score":428,"percentile":438},"2026-01-13",0.83656,{"date":440,"score":428,"percentile":441},"2026-01-14",0.83677,{"date":443,"score":428,"percentile":444},"2026-01-15",0.83676,{"date":446,"score":428,"percentile":447},"2026-01-16",0.83685,{"date":449,"score":428,"percentile":450},"2026-01-17",0.83688,{"date":452,"score":428,"percentile":453},"2026-01-18",0.83683,{"date":455,"score":428,"percentile":456},"2026-01-19",0.83678,{"date":458,"score":428,"percentile":459},"2026-01-20",0.8368,{"date":461,"score":428,"percentile":447},"2026-01-21",{"date":463,"score":428,"percentile":464},"2026-01-22",0.83692,{"date":466,"score":428,"percentile":467},"2026-01-23",0.83718,{"date":469,"score":428,"percentile":470},"2026-01-24",0.83728,{"date":472,"score":428,"percentile":473},"2026-01-25",0.83723,{"date":475,"score":428,"percentile":476},"2026-01-26",0.83722,{"date":478,"score":428,"percentile":473},"2026-01-27",{"date":480,"score":428,"percentile":481},"2026-01-28",0.83726,{"date":483,"score":428,"percentile":470},"2026-01-29",{"date":485,"score":428,"percentile":486},"2026-01-30",0.83732,{"date":488,"score":428,"percentile":489},"2026-01-31",0.83738,{"date":491,"score":428,"percentile":492},"2026-02-01",0.83807,[494],{"source":97,"cvss_v2_0":495,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":95,"baseSeverity":9,"vectorString":98,"impactScore":496,"exploitabilityScore":497},6.4,10,[499,514,523],{"ecosystem":9,"name":500,"vendor":501,"product":502,"cpe_part":503,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":504},"ubuntu linux","canonical","ubuntu_linux","o",[505,508,510,512],{"version":506,"is_range":91,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.06","cpe",{"version":509,"is_range":91,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.10",{"version":511,"is_range":91,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.04",{"version":513,"is_range":91,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.10",{"ecosystem":9,"name":515,"vendor":516,"product":517,"cpe_part":503,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":518},"debian linux","debian","debian_linux",[519,521],{"version":520,"is_range":91,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.1",{"version":522,"is_range":91,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0",{"ecosystem":9,"name":524,"vendor":9,"product":524,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":525},"PHP",[526,533],{"version":527,"is_range":528,"range_type":507,"version_start":529,"version_start_type":530,"version_end":531,"version_end_type":532,"fixed_in":9},"gte4.0.0_lt4.4.8",true,"4.0.0","including","4.4.8","excluding",{"version":534,"is_range":528,"range_type":507,"version_start":535,"version_start_type":530,"version_end":536,"version_end_type":532,"fixed_in":9},"gte5.0.0_lt5.2.4","5.0.0","5.2.4"]