[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-31626":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":72,"aliases":82,"duplicate_of":9,"upstream":83,"downstream":84,"duplicates":131,"related":132,"reserved_at":9,"published_at":145,"modified_at":146,"state":147,"summary":148,"references_raw":156,"kevs":191,"epss":192,"epss_history":195,"metrics":451,"affected":467},"CVE-2022-31626","In PHP versions 7.4.x below 7.4.30, 8.0.x below 8.0.20, and 8.1.x below 8.1.7, when pdo_mysql extension with mysqlnd driver, if the third party is allowed to supply host to connect to and the password for the connection, password of excessive length can trigger a buffer overflow in PHP, which can lead to a remote code execution vulnerability.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-120","Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')","The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.","weakness","Incomplete","Base","High",[20,24,28,32,36,40,44,48,52,56,60,64,68],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":33,"name":34,"techniques":35},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-42","MIME Conversion",[],{"id":41,"name":42,"techniques":43},"CAPEC-44","Overflow Binary Resource File",[],{"id":45,"name":46,"techniques":47},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":49,"name":50,"techniques":51},"CAPEC-46","Overflow Variables and Tags",[],{"id":53,"name":54,"techniques":55},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":57,"name":58,"techniques":59},"CAPEC-67","String Format Overflow in syslog()",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],{"id":69,"name":70,"techniques":71},"CAPEC-92","Forced Integer Overflow",[],[73],{"_key":74,"name":75,"source":76,"url":77,"maturity":78,"reliability_score":79,"verified":80,"type":9,"platforms":81,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_ACE2E2E59B049664","Exploit Reference (bugs.php.net)","reference","https://bugs.php.net/bug.php?id=81719","unknown",0.2,false,[],[],[],[85,87,89,91,93,95,97,99,101,103,105,107,109,111,113,115,117,119,121,123,125,127,129],{"_key":86},"SUSE-SU-2022:2183-1",{"_key":88},"RHSA-2022:5467",{"_key":90},"RHSA-2022:5468",{"_key":92},"RHSA-2022:5471",{"_key":94},"RHSA-2022:5491",{"_key":96},"RHSA-2022:5904",{"_key":98},"SUSE-SU-2022:2161-1",{"_key":100},"SUSE-SU-2022:4068-1",{"_key":102},"SUSE-SU-2022:2185-1",{"_key":104},"SUSE-SU-2022:2275-1",{"_key":106},"SUSE-SU-2022:2292-1",{"_key":108},"SUSE-SU-2022:2303-1",{"_key":110},"SUSE-SU-2022:3997-1",{"_key":112},"SUSE-SU-2022:4067-1",{"_key":114},"SUSE-SU-2022:4069-1",{"_key":116},"OPENSUSE-SU-2024:13267-1",{"_key":118},"DLA-3243-1",{"_key":120},"DSA-5179-1",{"_key":122},"MGASA-2022-0234",{"_key":124},"UBUNTU-CVE-2022-31626",{"_key":126},"USN-5479-1",{"_key":128},"DEBIAN-CVE-2022-31626",{"_key":130},"USN-5479-2",[],[133,134,135,136,137,138,139,140,141,142,143,144],{"_key":86},{"_key":98},{"_key":100},{"_key":102},{"_key":104},{"_key":106},{"_key":108},{"_key":110},{"_key":112},{"_key":114},{"_key":116},{"_key":122},"2022-06-16T05:45:16.880Z","2024-09-17T03:38:54.950Z","Modified",{"cisa_kev":80,"cisa_ransomware":80,"cisa_vendor":9,"epss_severity":149,"epss_score":150,"severity":151,"severity_score":152,"severity_version":153,"severity_source":154,"severity_vector":155,"severity_status":147},"medium",0.1024,"high",8.8,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",[157,166,170,174,179,183,187],{"url":77,"sources":158,"tags":160},[159,154],"cve.org",[161,162,163,164,165],"Exploit","Issue Tracking","Mailing List","Patch","Vendor Advisory",{"url":167,"sources":168,"tags":169},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZZTZQKRGEYJT5UB4FGG3MOE72SQUHSL4/",[159,154],[165],{"url":171,"sources":172,"tags":173},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3T4MMEEZYYAEHPQMZDFN44PHORJWJFZQ/",[159,154],[165],{"url":175,"sources":176,"tags":177},"https://www.debian.org/security/2022/dsa-5179",[159,154],[165,178],"Third Party Advisory",{"url":180,"sources":181,"tags":182},"https://security.netapp.com/advisory/ntap-20220722-0005/",[159,154],[178],{"url":184,"sources":185,"tags":186},"https://security.gentoo.org/glsa/202209-20",[159,154],[165,178],{"url":188,"sources":189,"tags":190},"https://lists.debian.org/debian-lts-announce/2022/12/msg00030.html",[159,154],[163,178],[],{"date":193,"score":150,"percentile":194},"2026-06-04",0.93286,[196,200,203,206,209,212,215,218,221,224,227,230,233,236,239,243,246,249,252,255,258,261,264,267,269,272,274,276,280,282,285,288,291,293,296,299,302,305,308,311,314,317,320,322,325,328,331,334,336,339,341,344,347,350,354,357,360,362,365,368,371,374,376,379,382,384,387,389,392,394,397,399,402,404,407,410,412,415,417,420,423,426,429,432,435,438,441,443,445,448],{"date":197,"score":198,"percentile":199},"2025-11-04",0.11683,0.93368,{"date":201,"score":198,"percentile":202},"2025-11-05",0.93367,{"date":204,"score":198,"percentile":205},"2025-11-06",0.93369,{"date":207,"score":198,"percentile":208},"2025-11-07",0.93374,{"date":210,"score":198,"percentile":211},"2025-11-08",0.93373,{"date":213,"score":198,"percentile":214},"2025-11-09",0.93371,{"date":216,"score":198,"percentile":217},"2025-11-10",0.93372,{"date":219,"score":198,"percentile":220},"2025-11-11",0.93375,{"date":222,"score":198,"percentile":223},"2025-11-12",0.93381,{"date":225,"score":198,"percentile":226},"2025-11-13",0.93384,{"date":228,"score":198,"percentile":229},"2025-11-14",0.93387,{"date":231,"score":198,"percentile":232},"2025-11-15",0.93379,{"date":234,"score":198,"percentile":235},"2025-11-16",0.93383,{"date":237,"score":198,"percentile":238},"2025-11-17",0.93382,{"date":240,"score":241,"percentile":242},"2025-11-18",0.22768,0.95503,{"date":244,"score":241,"percentile":245},"2025-11-19",0.95504,{"date":247,"score":241,"percentile":248},"2025-11-20",0.95508,{"date":250,"score":198,"percentile":251},"2025-11-21",0.93392,{"date":253,"score":198,"percentile":254},"2025-11-22",0.93391,{"date":256,"score":198,"percentile":257},"2025-11-23",0.93395,{"date":259,"score":198,"percentile":260},"2025-11-24",0.93397,{"date":262,"score":198,"percentile":263},"2025-11-25",0.93398,{"date":265,"score":198,"percentile":266},"2025-11-26",0.93396,{"date":268,"score":198,"percentile":260},"2025-11-27",{"date":270,"score":198,"percentile":271},"2025-11-28",0.9339,{"date":273,"score":198,"percentile":260},"2025-11-29",{"date":275,"score":198,"percentile":266},"2025-11-30",{"date":277,"score":278,"percentile":279},"2025-12-01",0.1746,0.94852,{"date":281,"score":278,"percentile":279},"2025-12-02",{"date":283,"score":278,"percentile":284},"2025-12-03",0.94853,{"date":286,"score":198,"percentile":287},"2025-12-04",0.93399,{"date":289,"score":198,"percentile":290},"2025-12-05",0.93402,{"date":292,"score":198,"percentile":290},"2025-12-06",{"date":294,"score":198,"percentile":295},"2025-12-07",0.93403,{"date":297,"score":198,"percentile":298},"2025-12-08",0.93406,{"date":300,"score":198,"percentile":301},"2025-12-09",0.93407,{"date":303,"score":198,"percentile":304},"2025-12-10",0.93411,{"date":306,"score":198,"percentile":307},"2025-12-11",0.93416,{"date":309,"score":198,"percentile":310},"2025-12-12",0.93419,{"date":312,"score":198,"percentile":313},"2025-12-13",0.93423,{"date":315,"score":198,"percentile":316},"2025-12-14",0.93422,{"date":318,"score":198,"percentile":319},"2025-12-15",0.93425,{"date":321,"score":198,"percentile":316},"2025-12-16",{"date":323,"score":198,"percentile":324},"2025-12-17",0.93426,{"date":326,"score":198,"percentile":327},"2025-12-18",0.9343,{"date":329,"score":198,"percentile":330},"2025-12-19",0.93431,{"date":332,"score":198,"percentile":333},"2025-12-20",0.93427,{"date":335,"score":198,"percentile":327},"2025-12-21",{"date":337,"score":198,"percentile":338},"2025-12-22",0.93437,{"date":340,"score":198,"percentile":327},"2025-12-23",{"date":342,"score":198,"percentile":343},"2025-12-24",0.93434,{"date":345,"score":198,"percentile":346},"2025-12-25",0.93448,{"date":348,"score":198,"percentile":349},"2025-12-26",0.93446,{"date":351,"score":352,"percentile":353},"2025-12-27",0.13139,0.93931,{"date":355,"score":198,"percentile":356},"2025-12-28",0.93444,{"date":358,"score":198,"percentile":359},"2025-12-29",0.93443,{"date":361,"score":198,"percentile":356},"2025-12-30",{"date":363,"score":198,"percentile":364},"2025-12-31",0.93449,{"date":366,"score":278,"percentile":367},"2026-01-01",0.94896,{"date":369,"score":278,"percentile":370},"2026-01-02",0.94891,{"date":372,"score":278,"percentile":373},"2026-01-03",0.94889,{"date":375,"score":198,"percentile":356},"2026-01-04",{"date":377,"score":198,"percentile":378},"2026-01-05",0.9344,{"date":380,"score":198,"percentile":381},"2026-01-06",0.93442,{"date":383,"score":198,"percentile":381},"2026-01-07",{"date":385,"score":198,"percentile":386},"2026-01-08",0.93445,{"date":388,"score":198,"percentile":364},"2026-01-09",{"date":390,"score":198,"percentile":391},"2026-01-10",0.93451,{"date":393,"score":198,"percentile":364},"2026-01-11",{"date":395,"score":198,"percentile":396},"2026-01-12",0.93447,{"date":398,"score":198,"percentile":349},"2026-01-13",{"date":400,"score":198,"percentile":401},"2026-01-14",0.93456,{"date":403,"score":198,"percentile":401},"2026-01-15",{"date":405,"score":198,"percentile":406},"2026-01-16",0.93461,{"date":408,"score":198,"percentile":409},"2026-01-17",0.93467,{"date":411,"score":198,"percentile":406},"2026-01-18",{"date":413,"score":198,"percentile":414},"2026-01-19",0.93462,{"date":416,"score":198,"percentile":414},"2026-01-20",{"date":418,"score":198,"percentile":419},"2026-01-21",0.93465,{"date":421,"score":198,"percentile":422},"2026-01-22",0.93468,{"date":424,"score":198,"percentile":425},"2026-01-23",0.93471,{"date":427,"score":198,"percentile":428},"2026-01-24",0.93475,{"date":430,"score":198,"percentile":431},"2026-01-25",0.93477,{"date":433,"score":198,"percentile":434},"2026-01-26",0.93479,{"date":436,"score":198,"percentile":437},"2026-01-27",0.9348,{"date":439,"score":198,"percentile":440},"2026-01-28",0.93486,{"date":442,"score":198,"percentile":440},"2026-01-29",{"date":444,"score":198,"percentile":440},"2026-01-30",{"date":446,"score":198,"percentile":447},"2026-01-31",0.93489,{"date":449,"score":278,"percentile":450},"2026-02-01",0.9492,[452,459],{"source":159,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":453,"cvss_v4_0":9},{"baseScore":454,"baseSeverity":455,"vectorString":456,"impactScore":457,"exploitabilityScore":458},7.5,"HIGH","CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",9.8,4.1,{"source":154,"cvss_v2_0":460,"cvss_v3_0":9,"cvss_v3_1":465,"cvss_v4_0":9},{"baseScore":461,"baseSeverity":9,"vectorString":462,"impactScore":463,"exploitabilityScore":464},6,"AV:N/AC:M/Au:S/C:P/I:P/A:P",6.4,6.8,{"baseScore":152,"baseSeverity":455,"vectorString":155,"impactScore":457,"exploitabilityScore":466},7.2,[468,479,497],{"ecosystem":9,"name":469,"vendor":470,"product":471,"cpe_part":472,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":473},"debian linux","debian","debian_linux","o",[474,477],{"version":475,"is_range":80,"range_type":476,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0","cpe",{"version":478,"is_range":80,"range_type":476,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0",{"ecosystem":9,"name":480,"vendor":9,"product":480,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":481},"PHP",[482,489,493],{"version":483,"is_range":484,"range_type":159,"version_start":485,"version_start_type":486,"version_end":487,"version_end_type":488,"fixed_in":9},">= 7.4.X, \u003C 7.4.30",true,"7.4.X","including","7.4.30","excluding",{"version":490,"is_range":484,"range_type":159,"version_start":491,"version_start_type":486,"version_end":492,"version_end_type":488,"fixed_in":9},">= 8.0.X, \u003C 8.0.20","8.0.X","8.0.20",{"version":494,"is_range":484,"range_type":159,"version_start":495,"version_start_type":486,"version_end":496,"version_end_type":488,"fixed_in":9},">= 8.1.X, \u003C 8.1.7","8.1.X","8.1.7",{"ecosystem":9,"name":480,"vendor":9,"product":480,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":498},[499,502,505],{"version":500,"is_range":484,"range_type":476,"version_start":501,"version_start_type":486,"version_end":487,"version_end_type":488,"fixed_in":9},"gte7.4.0_lt7.4.30","7.4.0",{"version":503,"is_range":484,"range_type":476,"version_start":504,"version_start_type":486,"version_end":492,"version_end_type":488,"fixed_in":9},"gte8.0.0_lt8.0.20","8.0.0",{"version":506,"is_range":484,"range_type":476,"version_start":507,"version_start_type":486,"version_end":496,"version_end_type":488,"fixed_in":9},"gte8.1.0_lt8.1.7","8.1.0"]