[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2008-3659":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":69,"duplicate_of":9,"upstream":70,"downstream":71,"duplicates":74,"related":75,"reserved_at":9,"published_at":76,"modified_at":77,"state":78,"summary":79,"references_raw":87,"kevs":242,"epss":243,"epss_history":246,"metrics":496,"affected":501},"CVE-2008-3659","Buffer overflow in the memnstr function in PHP 4.4.x before 4.4.9 and PHP 5.6 through 5.2.6 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via the delimiter argument to the explode function.  NOTE: the scope of this issue is limited since most applications would not use an attacker-controlled delimiter, but local attacks against safe_mode are feasible.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[],[],[],[72],{"_key":73},"DSA-1647-1",[],[],"2008-08-15T00:00:00.000Z","2024-08-07T09:45:18.989Z","Modified",{"cisa_kev":80,"cisa_ransomware":80,"cisa_vendor":9,"epss_severity":81,"epss_score":82,"severity":81,"severity_score":83,"severity_version":84,"severity_source":85,"severity_vector":86,"severity_status":78},false,"medium",0.16468,6.4,"v2.0","nvd","AV:N/AC:L/Au:N/C:N/I:P/A:P",[88,95,101,107,112,117,121,125,131,136,141,145,149,153,158,163,168,172,176,180,185,191,195,200,204,208,212,217,221,225,230,234,238],{"url":89,"sources":90,"tags":92},"http://www.securitytracker.com/id?1020995",[91,85],"cve.org",[93,94],"VDB Entry","X Refsource SECTRACK",{"url":96,"sources":97,"tags":98},"http://secunia.com/advisories/32746",[91,85],[99,100],"Third Party Advisory","X Refsource SECUNIA",{"url":102,"sources":103,"tags":104},"http://marc.info/?l=bugtraq&m=125631037611762&w=2",[91,85],[105,106],"Vendor Advisory","X Refsource HP",{"url":108,"sources":109,"tags":110},"http://support.apple.com/kb/HT3549",[91,85],[111],"X Refsource CONFIRM",{"url":113,"sources":114,"tags":115},"http://security.gentoo.org/glsa/glsa-200811-05.xml",[91,85],[105,116],"X Refsource GENTOO",{"url":118,"sources":119,"tags":120},"http://marc.info/?l=bugtraq&m=124654546101607&w=2",[91,85],[105,106],{"url":122,"sources":123,"tags":124},"http://secunia.com/advisories/31982",[91,85],[99,100],{"url":126,"sources":127,"tags":128},"http://www.securityfocus.com/archive/1/501376/100/0/threaded",[91,85],[129,130],"Mailing List","X Refsource BUGTRAQ",{"url":132,"sources":133,"tags":134},"http://www.mandriva.com/security/advisories?name=MDVSA-2009:024",[91,85],[105,135],"X Refsource MANDRIVA",{"url":137,"sources":138,"tags":139},"http://osvdb.org/47483",[91,85],[93,140],"X Refsource OSVDB",{"url":142,"sources":143,"tags":144},"http://wiki.rpath.com/Advisories:rPSA-2009-0035",[91,85],[111],{"url":146,"sources":147,"tags":148},"http://secunia.com/advisories/35074",[91,85],[99,100],{"url":150,"sources":151,"tags":152},"http://secunia.com/advisories/32148",[91,85],[99,100],{"url":154,"sources":155,"tags":156},"http://lists.apple.com/archives/security-announce/2009/May/msg00002.html",[91,85],[105,157],"X Refsource APPLE",{"url":159,"sources":160,"tags":161},"http://www.openwall.com/lists/oss-security/2008/08/08/2",[91,85],[129,162],"X Refsource MLIST",{"url":164,"sources":165,"tags":166},"http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00004.html",[91,85],[105,167],"X Refsource SUSE",{"url":169,"sources":170,"tags":171},"http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00006.html",[91,85],[105,167],{"url":173,"sources":174,"tags":175},"http://www.mandriva.com/security/advisories?name=MDVSA-2009:023",[91,85],[105,135],{"url":177,"sources":178,"tags":179},"http://www.mandriva.com/security/advisories?name=MDVSA-2009:022",[91,85],[105,135],{"url":181,"sources":182,"tags":183},"https://exchange.xforce.ibmcloud.com/vulnerabilities/44405",[91,85],[93,184],"X Refsource XF",{"url":186,"sources":187,"tags":188},"http://www.us-cert.gov/cas/techalerts/TA09-133A.html",[91,85],[99,189,190],"X Refsource CERT","US Government Resource",{"url":192,"sources":193,"tags":194},"http://www.openwall.com/lists/oss-security/2008/08/13/8",[91,85],[129,162],{"url":196,"sources":197,"tags":198},"http://www.vupen.com/english/advisories/2009/1297",[91,85],[93,199],"X Refsource VUPEN",{"url":201,"sources":202,"tags":203},"http://bugs.gentoo.org/show_bug.cgi?id=234102",[91,85],[111],{"url":205,"sources":206,"tags":207},"http://www.mandriva.com/security/advisories?name=MDVSA-2009:021",[91,85],[105,135],{"url":209,"sources":210,"tags":211},"http://www.openwall.com/lists/oss-security/2008/08/08/4",[91,85],[129,162],{"url":213,"sources":214,"tags":215},"http://www.debian.org/security/2008/dsa-1647",[91,85],[105,216],"X Refsource DEBIAN",{"url":218,"sources":219,"tags":220},"http://www.vupen.com/english/advisories/2008/2336",[91,85],[93,199],{"url":222,"sources":223,"tags":224},"http://www.openwall.com/lists/oss-security/2008/08/08/3",[91,85],[129,162],{"url":226,"sources":227,"tags":228},"http://www.php.net/archive/2008.php#id2008-08-07-1",[91,85],[111,229],"Patch",{"url":231,"sources":232,"tags":233},"http://news.php.net/php.cvs/52002",[91,85],[111],{"url":235,"sources":236,"tags":237},"http://secunia.com/advisories/35650",[91,85],[99,100],{"url":239,"sources":240,"tags":241},"http://secunia.com/advisories/32316",[91,85],[99,100],[],{"date":244,"score":82,"percentile":245},"2026-06-04",0.95013,[247,251,253,256,259,262,265,267,270,273,276,279,282,284,287,290,293,296,299,302,304,307,310,313,316,319,321,323,326,328,331,334,336,338,341,343,346,349,352,355,358,361,364,367,370,373,376,378,381,383,386,389,392,394,398,400,403,405,408,411,414,417,419,422,424,426,429,432,435,438,440,442,445,448,451,454,457,460,462,465,468,471,474,477,480,482,485,488,490,493],{"date":248,"score":249,"percentile":250},"2025-11-04",0.14232,0.94098,{"date":252,"score":249,"percentile":250},"2025-11-05",{"date":254,"score":249,"percentile":255},"2025-11-06",0.941,{"date":257,"score":249,"percentile":258},"2025-11-07",0.94103,{"date":260,"score":249,"percentile":261},"2025-11-08",0.94104,{"date":263,"score":249,"percentile":264},"2025-11-09",0.94102,{"date":266,"score":249,"percentile":258},"2025-11-10",{"date":268,"score":249,"percentile":269},"2025-11-11",0.94105,{"date":271,"score":249,"percentile":272},"2025-11-12",0.9411,{"date":274,"score":249,"percentile":275},"2025-11-13",0.94112,{"date":277,"score":249,"percentile":278},"2025-11-14",0.94114,{"date":280,"score":249,"percentile":281},"2025-11-15",0.94109,{"date":283,"score":249,"percentile":275},"2025-11-16",{"date":285,"score":249,"percentile":286},"2025-11-17",0.94111,{"date":288,"score":249,"percentile":289},"2025-11-18",0.93763,{"date":291,"score":249,"percentile":292},"2025-11-19",0.93767,{"date":294,"score":249,"percentile":295},"2025-11-20",0.93773,{"date":297,"score":249,"percentile":298},"2025-11-21",0.94118,{"date":300,"score":249,"percentile":301},"2025-11-22",0.94116,{"date":303,"score":249,"percentile":298},"2025-11-23",{"date":305,"score":249,"percentile":306},"2025-11-24",0.9412,{"date":308,"score":249,"percentile":309},"2025-11-25",0.94122,{"date":311,"score":249,"percentile":312},"2025-11-26",0.94123,{"date":314,"score":249,"percentile":315},"2025-11-27",0.94126,{"date":317,"score":249,"percentile":318},"2025-11-28",0.94121,{"date":320,"score":249,"percentile":309},"2025-11-29",{"date":322,"score":249,"percentile":318},"2025-11-30",{"date":324,"score":249,"percentile":325},"2025-12-01",0.94164,{"date":327,"score":249,"percentile":325},"2025-12-02",{"date":329,"score":249,"percentile":330},"2025-12-03",0.94165,{"date":332,"score":249,"percentile":333},"2025-12-04",0.94117,{"date":335,"score":249,"percentile":318},"2025-12-05",{"date":337,"score":249,"percentile":318},"2025-12-06",{"date":339,"score":249,"percentile":340},"2025-12-07",0.94119,{"date":342,"score":249,"percentile":309},"2025-12-08",{"date":344,"score":249,"percentile":345},"2025-12-09",0.94128,{"date":347,"score":82,"percentile":348},"2025-12-10",0.94649,{"date":350,"score":82,"percentile":351},"2025-12-11",0.94652,{"date":353,"score":82,"percentile":354},"2025-12-12",0.94655,{"date":356,"score":82,"percentile":357},"2025-12-13",0.94654,{"date":359,"score":82,"percentile":360},"2025-12-14",0.94653,{"date":362,"score":82,"percentile":363},"2025-12-15",0.94658,{"date":365,"score":82,"percentile":366},"2025-12-16",0.9466,{"date":368,"score":249,"percentile":369},"2025-12-17",0.94149,{"date":371,"score":249,"percentile":372},"2025-12-18",0.94154,{"date":374,"score":249,"percentile":375},"2025-12-19",0.94155,{"date":377,"score":249,"percentile":372},"2025-12-20",{"date":379,"score":249,"percentile":380},"2025-12-21",0.94157,{"date":382,"score":249,"percentile":380},"2025-12-22",{"date":384,"score":249,"percentile":385},"2025-12-23",0.94156,{"date":387,"score":249,"percentile":388},"2025-12-24",0.9416,{"date":390,"score":249,"percentile":391},"2025-12-25",0.94166,{"date":393,"score":249,"percentile":330},"2025-12-26",{"date":395,"score":396,"percentile":397},"2025-12-27",0.09634,0.92663,{"date":399,"score":249,"percentile":325},"2025-12-28",{"date":401,"score":249,"percentile":402},"2025-12-29",0.94163,{"date":404,"score":249,"percentile":330},"2025-12-30",{"date":406,"score":249,"percentile":407},"2025-12-31",0.94171,{"date":409,"score":249,"percentile":410},"2026-01-01",0.94214,{"date":412,"score":249,"percentile":413},"2026-01-02",0.9421,{"date":415,"score":249,"percentile":416},"2026-01-03",0.94205,{"date":418,"score":249,"percentile":330},"2026-01-04",{"date":420,"score":249,"percentile":421},"2026-01-05",0.94162,{"date":423,"score":249,"percentile":421},"2026-01-06",{"date":425,"score":249,"percentile":402},"2026-01-07",{"date":427,"score":249,"percentile":428},"2026-01-08",0.94167,{"date":430,"score":249,"percentile":431},"2026-01-09",0.94169,{"date":433,"score":249,"percentile":434},"2026-01-10",0.9417,{"date":436,"score":249,"percentile":437},"2026-01-11",0.94168,{"date":439,"score":249,"percentile":330},"2026-01-12",{"date":441,"score":249,"percentile":428},"2026-01-13",{"date":443,"score":249,"percentile":444},"2026-01-14",0.94173,{"date":446,"score":249,"percentile":447},"2026-01-15",0.94174,{"date":449,"score":249,"percentile":450},"2026-01-16",0.94178,{"date":452,"score":249,"percentile":453},"2026-01-17",0.94182,{"date":455,"score":249,"percentile":456},"2026-01-18",0.94177,{"date":458,"score":249,"percentile":459},"2026-01-19",0.94176,{"date":461,"score":249,"percentile":456},"2026-01-20",{"date":463,"score":249,"percentile":464},"2026-01-21",0.94179,{"date":466,"score":249,"percentile":467},"2026-01-22",0.94183,{"date":469,"score":249,"percentile":470},"2026-01-23",0.94189,{"date":472,"score":249,"percentile":473},"2026-01-24",0.94192,{"date":475,"score":249,"percentile":476},"2026-01-25",0.94195,{"date":478,"score":249,"percentile":479},"2026-01-26",0.94197,{"date":481,"score":249,"percentile":479},"2026-01-27",{"date":483,"score":249,"percentile":484},"2026-01-28",0.942,{"date":486,"score":249,"percentile":487},"2026-01-29",0.94202,{"date":489,"score":249,"percentile":487},"2026-01-30",{"date":491,"score":249,"percentile":492},"2026-01-31",0.94204,{"date":494,"score":249,"percentile":495},"2026-02-01",0.94238,[497],{"source":85,"cvss_v2_0":498,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":83,"baseSeverity":9,"vectorString":86,"impactScore":499,"exploitabilityScore":500},4.9,10,[502],{"ecosystem":9,"name":503,"vendor":9,"product":503,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":504},"PHP",[505,508,510,512,514,516,518,520,522,524,526,528,530,532,534,536],{"version":506,"is_range":80,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.4.0","cpe",{"version":509,"is_range":80,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.4.1",{"version":511,"is_range":80,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.4.2",{"version":513,"is_range":80,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.4.3",{"version":515,"is_range":80,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.4.4",{"version":517,"is_range":80,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.4.5",{"version":519,"is_range":80,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.4.6",{"version":521,"is_range":80,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.4.7",{"version":523,"is_range":80,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.4.8",{"version":525,"is_range":80,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.2.0",{"version":527,"is_range":80,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.2.1",{"version":529,"is_range":80,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.2.2",{"version":531,"is_range":80,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.2.3",{"version":533,"is_range":80,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.2.4",{"version":535,"is_range":80,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.2.5",{"version":537,"is_range":80,"range_type":507,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.2.6"]