[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2008-0599":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":28,"aliases":38,"duplicate_of":9,"upstream":39,"downstream":40,"duplicates":49,"related":50,"reserved_at":9,"published_at":53,"modified_at":54,"state":55,"summary":56,"references_raw":63,"kevs":235,"epss":236,"epss_history":239,"metrics":462,"affected":469},"CVE-2008-0599","The init_request_info function in sapi/cgi/cgi_main.c in PHP before 5.2.6 does not properly consider operator precedence when calculating the length of PATH_TRANSLATED, which might allow remote attackers to execute arbitrary code via a crafted URI.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-131","Incorrect Calculation of Buffer Size","The product does not correctly calculate the size to be used when allocating a buffer, which could lead to a buffer overflow.","weakness","Draft","Base","High",[20,24],{"id":21,"name":22,"techniques":23},"CAPEC-100","Overflow Buffers",[],{"id":25,"name":26,"techniques":27},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],[29],{"_key":30,"name":31,"source":32,"url":33,"maturity":34,"reliability_score":35,"verified":36,"type":9,"platforms":37,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_52CEA5A53CAB922E","Exploit Reference (cvs.php.net)","reference","http://cvs.php.net/viewvc.cgi/php-src/sapi/cgi/cgi_main.c?r1=1.267.2.15.2.50.2.12&r2=1.267.2.15.2.50.2.13&diff_format=u","unknown",0.2,false,[],[],[],[41,43,45,47],{"_key":42},"RHSA-2008:0505",{"_key":44},"OPENSUSE-SU-2024:11167-1",{"_key":46},"OPENSUSE-SU-2024:11169-1",{"_key":48},"DTSA-135-1",[],[51,52],{"_key":44},{"_key":46},"2008-05-05T17:00:00.000Z","2024-08-07T07:54:21.880Z","Modified",{"cisa_kev":36,"cisa_ransomware":36,"cisa_vendor":9,"epss_severity":57,"epss_score":58,"severity":57,"severity_score":59,"severity_version":60,"severity_source":61,"severity_vector":62,"severity_status":55},"high",0.3769,10,"v2.0","nvd","AV:N/AC:L/Au:N/C:C/I:C/A:C",[64,72,79,85,90,95,99,104,108,112,117,122,126,130,135,141,145,150,154,158,163,168,172,177,182,186,191,195,199,204,210,214,219,223,227,231],{"url":65,"sources":66,"tags":68},"http://www.vupen.com/english/advisories/2008/1412",[67,61],"cve.org",[69,70,71],"VDB Entry","X Refsource VUPEN","Broken Link",{"url":73,"sources":74,"tags":75},"http://www.securityfocus.com/archive/1/492535/100/0/threaded",[67,61],[76,77,71,78,69],"Mailing List","X Refsource BUGTRAQ","Third Party Advisory",{"url":80,"sources":81,"tags":82},"https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00779.html",[67,61],[83,84,76],"Vendor Advisory","X Refsource FEDORA",{"url":33,"sources":86,"tags":87},[67,61],[88,71,89],"X Refsource CONFIRM","Exploit",{"url":91,"sources":92,"tags":93},"http://secunia.com/advisories/32746",[67,61],[78,94,71],"X Refsource SECUNIA",{"url":96,"sources":97,"tags":98},"http://secunia.com/advisories/30616",[67,61],[78,94,71],{"url":100,"sources":101,"tags":102},"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01476437",[67,61],[83,103,71],"X Refsource HP",{"url":105,"sources":106,"tags":107},"http://marc.info/?l=bugtraq&m=125631037611762&w=2",[67,61],[83,103,76],{"url":109,"sources":110,"tags":111},"http://secunia.com/advisories/30083",[67,61],[78,94,71],{"url":113,"sources":114,"tags":115},"http://lists.apple.com/archives/security-announce//2008/Jul/msg00003.html",[67,61],[83,116,76],"X Refsource APPLE",{"url":118,"sources":119,"tags":120},"http://security.gentoo.org/glsa/glsa-200811-05.xml",[67,61],[83,121,78],"X Refsource GENTOO",{"url":123,"sources":124,"tags":125},"http://marc.info/?l=bugtraq&m=124654546101607&w=2",[67,61],[83,103,76],{"url":127,"sources":128,"tags":129},"https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00773.html",[67,61],[83,84,76],{"url":131,"sources":132,"tags":133},"http://www.securityfocus.com/bid/29009",[67,61],[69,134,71,78],"X Refsource BID",{"url":136,"sources":137,"tags":138},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5510",[67,61],[69,139,140,71],"Signature","X Refsource OVAL",{"url":142,"sources":143,"tags":144},"http://secunia.com/advisories/30828",[67,61],[78,94,71],{"url":146,"sources":147,"tags":148},"http://www.mandriva.com/security/advisories?name=MDVSA-2008:128",[67,61],[83,149,71],"X Refsource MANDRIVA",{"url":151,"sources":152,"tags":153},"http://www.vupen.com/english/advisories/2008/2268",[67,61],[69,70,71],{"url":155,"sources":156,"tags":157},"http://secunia.com/advisories/30345",[67,61],[78,94,71,83],{"url":159,"sources":160,"tags":161},"http://www.ubuntu.com/usn/usn-628-1",[67,61],[83,162,78],"X Refsource UBUNTU",{"url":164,"sources":165,"tags":166},"https://exchange.xforce.ibmcloud.com/vulnerabilities/42137",[67,61],[69,167,78],"X Refsource XF",{"url":169,"sources":170,"tags":171},"http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0176",[67,61],[88,71],{"url":173,"sources":174,"tags":175},"http://www.openwall.com/lists/oss-security/2008/05/02/2",[67,61],[76,176],"X Refsource MLIST",{"url":178,"sources":179,"tags":180},"http://www.php.net/ChangeLog-5.php",[67,61],[88,181],"Release Notes",{"url":183,"sources":184,"tags":185},"http://secunia.com/advisories/31200",[67,61],[78,94,71],{"url":187,"sources":188,"tags":189},"http://www.slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.488951",[67,61],[83,190,71],"X Refsource SLACKWARE",{"url":192,"sources":193,"tags":194},"http://secunia.com/advisories/30757",[67,61],[78,94,71],{"url":196,"sources":197,"tags":198},"http://secunia.com/advisories/31326",[67,61],[78,94,71],{"url":200,"sources":201,"tags":202},"http://www.securitytracker.com/id?1019958",[67,61],[69,203,71,78],"X Refsource SECTRACK",{"url":205,"sources":206,"tags":207},"http://www.kb.cert.org/vuls/id/147027",[67,61],[78,208,209],"X Refsource CERT VN","US Government Resource",{"url":211,"sources":212,"tags":213},"https://issues.rpath.com/browse/RPL-2503",[67,61],[88,71],{"url":215,"sources":216,"tags":217},"http://www.redhat.com/support/errata/RHSA-2008-0505.html",[67,61],[83,218,71],"X Refsource REDHAT",{"url":220,"sources":221,"tags":222},"http://www.vupen.com/english/advisories/2008/1810/references",[67,61],[69,70,71],{"url":224,"sources":225,"tags":226},"http://www.mandriva.com/security/advisories?name=MDVSA-2008:127",[67,61],[83,149,71],{"url":228,"sources":229,"tags":230},"http://secunia.com/advisories/35650",[67,61],[78,94,71],{"url":232,"sources":233,"tags":234},"http://secunia.com/advisories/30048",[67,61],[78,94,71,83],[],{"date":237,"score":58,"percentile":238},"2026-06-04",0.97284,[240,244,247,249,252,254,256,258,261,264,267,269,271,273,275,278,280,283,286,288,290,292,294,296,298,300,303,305,308,310,312,315,317,319,321,323,325,328,331,334,337,340,342,345,347,349,352,354,356,358,360,362,364,366,370,372,375,377,379,382,384,386,390,392,395,398,401,404,407,410,412,414,417,420,423,426,428,430,433,435,438,440,443,445,447,450,453,455,457,459],{"date":241,"score":242,"percentile":243},"2025-11-04",0.52938,0.97816,{"date":245,"score":242,"percentile":246},"2025-11-05",0.97817,{"date":248,"score":242,"percentile":246},"2025-11-06",{"date":250,"score":242,"percentile":251},"2025-11-07",0.97818,{"date":253,"score":242,"percentile":246},"2025-11-08",{"date":255,"score":242,"percentile":246},"2025-11-09",{"date":257,"score":242,"percentile":246},"2025-11-10",{"date":259,"score":242,"percentile":260},"2025-11-11",0.97819,{"date":262,"score":242,"percentile":263},"2025-11-12",0.97822,{"date":265,"score":242,"percentile":266},"2025-11-13",0.97823,{"date":268,"score":242,"percentile":266},"2025-11-14",{"date":270,"score":242,"percentile":260},"2025-11-15",{"date":272,"score":242,"percentile":260},"2025-11-16",{"date":274,"score":242,"percentile":260},"2025-11-17",{"date":276,"score":242,"percentile":277},"2025-11-18",0.97845,{"date":279,"score":242,"percentile":277},"2025-11-19",{"date":281,"score":242,"percentile":282},"2025-11-20",0.97849,{"date":284,"score":242,"percentile":285},"2025-11-21",0.9782,{"date":287,"score":242,"percentile":285},"2025-11-22",{"date":289,"score":242,"percentile":285},"2025-11-23",{"date":291,"score":242,"percentile":285},"2025-11-24",{"date":293,"score":242,"percentile":263},"2025-11-25",{"date":295,"score":242,"percentile":263},"2025-11-26",{"date":297,"score":242,"percentile":266},"2025-11-27",{"date":299,"score":242,"percentile":266},"2025-11-28",{"date":301,"score":242,"percentile":302},"2025-11-29",0.97824,{"date":304,"score":242,"percentile":263},"2025-11-30",{"date":306,"score":242,"percentile":307},"2025-12-01",0.97839,{"date":309,"score":242,"percentile":307},"2025-12-02",{"date":311,"score":242,"percentile":307},"2025-12-03",{"date":313,"score":242,"percentile":314},"2025-12-04",0.97821,{"date":316,"score":242,"percentile":285},"2025-12-05",{"date":318,"score":242,"percentile":263},"2025-12-06",{"date":320,"score":242,"percentile":263},"2025-12-07",{"date":322,"score":242,"percentile":266},"2025-12-08",{"date":324,"score":242,"percentile":263},"2025-12-09",{"date":326,"score":242,"percentile":327},"2025-12-10",0.97827,{"date":329,"score":242,"percentile":330},"2025-12-11",0.97829,{"date":332,"score":242,"percentile":333},"2025-12-12",0.97833,{"date":335,"score":242,"percentile":336},"2025-12-13",0.97834,{"date":338,"score":242,"percentile":339},"2025-12-14",0.97835,{"date":341,"score":242,"percentile":336},"2025-12-15",{"date":343,"score":242,"percentile":344},"2025-12-16",0.97836,{"date":346,"score":242,"percentile":307},"2025-12-17",{"date":348,"score":242,"percentile":344},"2025-12-18",{"date":350,"score":242,"percentile":351},"2025-12-19",0.97837,{"date":353,"score":242,"percentile":339},"2025-12-20",{"date":355,"score":242,"percentile":336},"2025-12-21",{"date":357,"score":242,"percentile":333},"2025-12-22",{"date":359,"score":242,"percentile":339},"2025-12-23",{"date":361,"score":242,"percentile":339},"2025-12-24",{"date":363,"score":242,"percentile":339},"2025-12-25",{"date":365,"score":242,"percentile":344},"2025-12-26",{"date":367,"score":368,"percentile":369},"2025-12-27",0.54455,0.9793,{"date":371,"score":242,"percentile":339},"2025-12-28",{"date":373,"score":242,"percentile":374},"2025-12-29",0.97838,{"date":376,"score":242,"percentile":351},"2025-12-30",{"date":378,"score":242,"percentile":307},"2025-12-31",{"date":380,"score":242,"percentile":381},"2026-01-01",0.97862,{"date":383,"score":242,"percentile":381},"2026-01-02",{"date":385,"score":242,"percentile":381},"2026-01-03",{"date":387,"score":388,"percentile":389},"2026-01-04",0.49743,0.977,{"date":391,"score":388,"percentile":389},"2026-01-05",{"date":393,"score":388,"percentile":394},"2026-01-06",0.97701,{"date":396,"score":388,"percentile":397},"2026-01-07",0.97702,{"date":399,"score":388,"percentile":400},"2026-01-08",0.97704,{"date":402,"score":388,"percentile":403},"2026-01-09",0.97707,{"date":405,"score":388,"percentile":406},"2026-01-10",0.97708,{"date":408,"score":388,"percentile":409},"2026-01-11",0.97706,{"date":411,"score":388,"percentile":403},"2026-01-12",{"date":413,"score":388,"percentile":406},"2026-01-13",{"date":415,"score":388,"percentile":416},"2026-01-14",0.97712,{"date":418,"score":388,"percentile":419},"2026-01-15",0.97713,{"date":421,"score":388,"percentile":422},"2026-01-16",0.97716,{"date":424,"score":388,"percentile":425},"2026-01-17",0.97719,{"date":427,"score":388,"percentile":419},"2026-01-18",{"date":429,"score":388,"percentile":419},"2026-01-19",{"date":431,"score":388,"percentile":432},"2026-01-20",0.97714,{"date":434,"score":388,"percentile":432},"2026-01-21",{"date":436,"score":388,"percentile":437},"2026-01-22",0.97715,{"date":439,"score":388,"percentile":425},"2026-01-23",{"date":441,"score":388,"percentile":442},"2026-01-24",0.9772,{"date":444,"score":388,"percentile":432},"2026-01-25",{"date":446,"score":388,"percentile":422},"2026-01-26",{"date":448,"score":388,"percentile":449},"2026-01-27",0.97717,{"date":451,"score":388,"percentile":452},"2026-01-28",0.97718,{"date":454,"score":388,"percentile":452},"2026-01-29",{"date":456,"score":388,"percentile":442},"2026-01-30",{"date":458,"score":388,"percentile":425},"2026-01-31",{"date":460,"score":388,"percentile":461},"2026-02-01",0.97738,[463],{"source":61,"cvss_v2_0":464,"cvss_v3_0":9,"cvss_v3_1":465,"cvss_v4_0":9},{"baseScore":59,"baseSeverity":9,"vectorString":62,"impactScore":59,"exploitabilityScore":59},{"baseScore":466,"baseSeverity":467,"vectorString":468,"impactScore":466,"exploitabilityScore":59},9.8,"CRITICAL","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",[470,482,487,500,508],{"ecosystem":9,"name":471,"vendor":472,"product":473,"cpe_part":474,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":475},"mac os x","apple","mac_os_x","o",[476],{"version":477,"is_range":478,"range_type":479,"version_start":9,"version_start_type":9,"version_end":480,"version_end_type":481,"fixed_in":9},"lt10.5.4",true,"cpe","10.5.4","excluding",{"ecosystem":9,"name":483,"vendor":472,"product":484,"cpe_part":474,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":485},"mac os x server","mac_os_x_server",[486],{"version":477,"is_range":478,"range_type":479,"version_start":9,"version_start_type":9,"version_end":480,"version_end_type":481,"fixed_in":9},{"ecosystem":9,"name":488,"vendor":489,"product":490,"cpe_part":474,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":491},"ubuntu linux","canonical","ubuntu_linux",[492,494,496,498],{"version":493,"is_range":36,"range_type":479,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.06",{"version":495,"is_range":36,"range_type":479,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.04",{"version":497,"is_range":36,"range_type":479,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.10",{"version":499,"is_range":36,"range_type":479,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.04",{"ecosystem":9,"name":501,"vendor":502,"product":501,"cpe_part":474,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":503},"fedora","fedoraproject",[504,506],{"version":505,"is_range":36,"range_type":479,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8",{"version":507,"is_range":36,"range_type":479,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9",{"ecosystem":9,"name":509,"vendor":9,"product":509,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":510},"PHP",[511],{"version":512,"is_range":478,"range_type":479,"version_start":9,"version_start_type":9,"version_end":513,"version_end_type":481,"fixed_in":9},"lt5.2.6","5.2.6"]