[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-31630":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":48,"aliases":58,"duplicate_of":9,"upstream":59,"downstream":60,"duplicates":87,"related":88,"reserved_at":9,"published_at":94,"modified_at":95,"state":96,"summary":97,"references_raw":105,"kevs":114,"epss":115,"epss_history":118,"metrics":393,"affected":406},"CVE-2022-31630","In PHP versions prior to 7.4.33, 8.0.25 and 8.1.12, when using imageloadfont() function in gd extension, it is possible to supply a specially crafted font file, such as if the loaded font is used with imagechar() function, the read outside allocated buffer will be used. This can lead to crashes or disclosure of confidential information. ",null,[11,28,39],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-131","Incorrect Calculation of Buffer Size","The product does not correctly calculate the size to be used when allocating a buffer, which could lead to a buffer overflow.","weakness","Draft","Base","High",[20,24],{"id":21,"name":22,"techniques":23},"CAPEC-100","Overflow Buffers",[],{"id":25,"name":26,"techniques":27},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"_key":29,"id":29,"name":30,"description":31,"type":15,"status":32,"abstraction":17,"likelihood_of_exploit":33,"capec":34},"CWE-190","Integer Overflow or Wraparound","The product performs a calculation that can\n         produce an integer overflow or wraparound when the logic\n         assumes that the resulting value will always be larger than\n         the original value. This occurs when an integer value is\n         incremented to a value that is too large to store in the\n         associated representation. When this occurs, the value may\n         become a very small or negative number.","Stable","Medium",[35],{"id":36,"name":37,"techniques":38},"CAPEC-92","Forced Integer Overflow",[],{"_key":40,"id":40,"name":41,"description":42,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":43},"CWE-125","Out-of-bounds Read","The product reads data past the end, or before the beginning, of the intended buffer.",[44],{"id":45,"name":46,"techniques":47},"CAPEC-540","Overread Buffers",[],[49],{"_key":50,"name":51,"source":52,"url":53,"maturity":54,"reliability_score":55,"verified":56,"type":9,"platforms":57,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_7088D157F65B6407","Exploit Reference (bugs.php.net)","reference","https://bugs.php.net/bug.php?id=81739","unknown",0.2,false,[],[],[],[61,63,65,67,69,71,73,75,77,79,81,83,85],{"_key":62},"RHSA-2023:0848",{"_key":64},"RHSA-2023:0965",{"_key":66},"RHSA-2023:2417",{"_key":68},"RHSA-2023:2903",{"_key":70},"SUSE-SU-2022:4005-1",{"_key":72},"SUSE-SU-2022:4068-1",{"_key":74},"SUSE-SU-2022:3997-1",{"_key":76},"SUSE-SU-2022:4069-1",{"_key":78},"OPENSUSE-SU-2024:12467-1",{"_key":80},"DSA-5277-1",{"_key":82},"UBUNTU-CVE-2022-31630",{"_key":84},"USN-5717-1",{"_key":86},"DEBIAN-CVE-2022-31630",[],[89,90,91,92,93],{"_key":70},{"_key":72},{"_key":74},{"_key":76},{"_key":78},"2022-11-14T06:53:06.774Z","2024-08-03T07:26:01.044Z","Modified",{"cisa_kev":56,"cisa_ransomware":56,"cisa_vendor":9,"epss_severity":98,"epss_score":99,"severity":100,"severity_score":101,"severity_version":102,"severity_source":103,"severity_vector":104,"severity_status":96},"low",0.00046,"high",7.1,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",[106],{"url":53,"sources":107,"tags":109},[108,103],"cve.org",[110,111,112,113],"Exploit","Issue Tracking","Patch","Vendor Advisory",[],{"date":116,"score":99,"percentile":117},"2026-06-04",0.14603,[119,123,126,129,132,135,138,141,144,147,150,153,156,159,162,166,169,172,175,178,181,184,187,190,193,196,199,202,205,209,212,215,218,221,224,227,230,233,236,239,242,245,248,251,254,257,260,263,266,269,272,275,278,281,285,288,291,294,297,300,303,306,310,313,316,319,322,324,327,330,333,336,339,342,345,348,351,354,357,360,363,366,369,372,375,378,381,384,387,390],{"date":120,"score":121,"percentile":122},"2025-11-04",0.00051,0.15618,{"date":124,"score":121,"percentile":125},"2025-11-05",0.15646,{"date":127,"score":121,"percentile":128},"2025-11-06",0.15742,{"date":130,"score":121,"percentile":131},"2025-11-07",0.15767,{"date":133,"score":121,"percentile":134},"2025-11-08",0.15777,{"date":136,"score":121,"percentile":137},"2025-11-09",0.1575,{"date":139,"score":121,"percentile":140},"2025-11-10",0.15704,{"date":142,"score":121,"percentile":143},"2025-11-11",0.15729,{"date":145,"score":121,"percentile":146},"2025-11-12",0.15774,{"date":148,"score":121,"percentile":149},"2025-11-13",0.15802,{"date":151,"score":121,"percentile":152},"2025-11-14",0.15803,{"date":154,"score":121,"percentile":155},"2025-11-15",0.1576,{"date":157,"score":121,"percentile":158},"2025-11-16",0.1573,{"date":160,"score":121,"percentile":161},"2025-11-17",0.15682,{"date":163,"score":164,"percentile":165},"2025-11-18",0.00195,0.36913,{"date":167,"score":164,"percentile":168},"2025-11-19",0.36923,{"date":170,"score":164,"percentile":171},"2025-11-20",0.36917,{"date":173,"score":121,"percentile":174},"2025-11-21",0.15712,{"date":176,"score":121,"percentile":177},"2025-11-22",0.15715,{"date":179,"score":121,"percentile":180},"2025-11-23",0.157,{"date":182,"score":121,"percentile":183},"2025-11-24",0.15659,{"date":185,"score":121,"percentile":186},"2025-11-25",0.15653,{"date":188,"score":121,"percentile":189},"2025-11-26",0.1564,{"date":191,"score":121,"percentile":192},"2025-11-27",0.15649,{"date":194,"score":121,"percentile":195},"2025-11-28",0.15634,{"date":197,"score":121,"percentile":198},"2025-11-29",0.1561,{"date":200,"score":121,"percentile":201},"2025-11-30",0.15619,{"date":203,"score":121,"percentile":204},"2025-12-01",0.15654,{"date":206,"score":207,"percentile":208},"2025-12-02",0.00059,0.18327,{"date":210,"score":207,"percentile":211},"2025-12-03",0.18339,{"date":213,"score":207,"percentile":214},"2025-12-04",0.18303,{"date":216,"score":207,"percentile":217},"2025-12-05",0.18359,{"date":219,"score":207,"percentile":220},"2025-12-06",0.18355,{"date":222,"score":207,"percentile":223},"2025-12-07",0.18342,{"date":225,"score":207,"percentile":226},"2025-12-08",0.1836,{"date":228,"score":207,"percentile":229},"2025-12-09",0.18427,{"date":231,"score":207,"percentile":232},"2025-12-10",0.18489,{"date":234,"score":207,"percentile":235},"2025-12-11",0.18531,{"date":237,"score":207,"percentile":238},"2025-12-12",0.18566,{"date":240,"score":207,"percentile":241},"2025-12-13",0.18577,{"date":243,"score":207,"percentile":244},"2025-12-14",0.18524,{"date":246,"score":207,"percentile":247},"2025-12-15",0.18509,{"date":249,"score":207,"percentile":250},"2025-12-16",0.18541,{"date":252,"score":207,"percentile":253},"2025-12-17",0.18627,{"date":255,"score":207,"percentile":256},"2025-12-18",0.18711,{"date":258,"score":207,"percentile":259},"2025-12-19",0.18722,{"date":261,"score":207,"percentile":262},"2025-12-20",0.18705,{"date":264,"score":207,"percentile":265},"2025-12-21",0.18653,{"date":267,"score":207,"percentile":268},"2025-12-22",0.18608,{"date":270,"score":207,"percentile":271},"2025-12-23",0.18613,{"date":273,"score":207,"percentile":274},"2025-12-24",0.18645,{"date":276,"score":207,"percentile":277},"2025-12-25",0.1872,{"date":279,"score":207,"percentile":280},"2025-12-26",0.18721,{"date":282,"score":283,"percentile":284},"2025-12-27",0.00045,0.13765,{"date":286,"score":207,"percentile":287},"2025-12-28",0.18673,{"date":289,"score":207,"percentile":290},"2025-12-29",0.18633,{"date":292,"score":207,"percentile":293},"2025-12-30",0.18642,{"date":295,"score":207,"percentile":296},"2025-12-31",0.18706,{"date":298,"score":207,"percentile":299},"2026-01-01",0.18802,{"date":301,"score":207,"percentile":302},"2026-01-02",0.18806,{"date":304,"score":207,"percentile":305},"2026-01-03",0.18783,{"date":307,"score":308,"percentile":309},"2026-01-04",0.00061,0.19203,{"date":311,"score":308,"percentile":312},"2026-01-05",0.19181,{"date":314,"score":308,"percentile":315},"2026-01-06",0.19199,{"date":317,"score":308,"percentile":318},"2026-01-07",0.1923,{"date":320,"score":308,"percentile":321},"2026-01-08",0.19288,{"date":323,"score":308,"percentile":321},"2026-01-09",{"date":325,"score":308,"percentile":326},"2026-01-10",0.193,{"date":328,"score":308,"percentile":329},"2026-01-11",0.19268,{"date":331,"score":308,"percentile":332},"2026-01-12",0.19228,{"date":334,"score":308,"percentile":335},"2026-01-13",0.19205,{"date":337,"score":308,"percentile":338},"2026-01-14",0.19258,{"date":340,"score":308,"percentile":341},"2026-01-15",0.19262,{"date":343,"score":308,"percentile":344},"2026-01-16",0.19289,{"date":346,"score":207,"percentile":347},"2026-01-17",0.18763,{"date":349,"score":207,"percentile":350},"2026-01-18",0.18698,{"date":352,"score":207,"percentile":353},"2026-01-19",0.18636,{"date":355,"score":207,"percentile":356},"2026-01-20",0.18618,{"date":358,"score":207,"percentile":359},"2026-01-21",0.18589,{"date":361,"score":207,"percentile":362},"2026-01-22",0.18516,{"date":364,"score":207,"percentile":365},"2026-01-23",0.18612,{"date":367,"score":207,"percentile":368},"2026-01-24",0.18641,{"date":370,"score":207,"percentile":371},"2026-01-25",0.18568,{"date":373,"score":207,"percentile":374},"2026-01-26",0.18467,{"date":376,"score":207,"percentile":377},"2026-01-27",0.18456,{"date":379,"score":207,"percentile":380},"2026-01-28",0.18461,{"date":382,"score":207,"percentile":383},"2026-01-29",0.18428,{"date":385,"score":207,"percentile":386},"2026-01-30",0.18442,{"date":388,"score":207,"percentile":389},"2026-01-31",0.1845,{"date":391,"score":207,"percentile":392},"2026-02-01",0.18476,[394,401],{"source":108,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":395,"cvss_v4_0":9},{"baseScore":396,"baseSeverity":397,"vectorString":398,"impactScore":399,"exploitabilityScore":400},6.5,"MEDIUM","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",4.2,10,{"source":103,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":402,"cvss_v4_0":9},{"baseScore":101,"baseSeverity":403,"vectorString":104,"impactScore":404,"exploitabilityScore":405},"HIGH",8.7,4.6,[407,425],{"ecosystem":9,"name":408,"vendor":9,"product":408,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":409},"PHP",[410,417,421],{"version":411,"is_range":412,"range_type":108,"version_start":413,"version_start_type":414,"version_end":415,"version_end_type":416,"fixed_in":9},">= 7.4.x, \u003C 7.4.33",true,"7.4.x","including","7.4.33","excluding",{"version":418,"is_range":412,"range_type":108,"version_start":419,"version_start_type":414,"version_end":420,"version_end_type":416,"fixed_in":9},">= 8.0.x, \u003C 8.0.25","8.0.x","8.0.25",{"version":422,"is_range":412,"range_type":108,"version_start":423,"version_start_type":414,"version_end":424,"version_end_type":416,"fixed_in":9},">= 8.1.x, \u003C 8.1.12","8.1.x","8.1.12",{"ecosystem":9,"name":408,"vendor":9,"product":408,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":426},[427,431,434],{"version":428,"is_range":412,"range_type":429,"version_start":430,"version_start_type":414,"version_end":415,"version_end_type":416,"fixed_in":9},"gte7.4.0_lt7.4.33","cpe","7.4.0",{"version":432,"is_range":412,"range_type":429,"version_start":433,"version_start_type":414,"version_end":420,"version_end_type":416,"fixed_in":9},"gte8.0.0_lt8.0.25","8.0.0",{"version":435,"is_range":412,"range_type":429,"version_start":436,"version_start_type":414,"version_end":424,"version_end_type":416,"fixed_in":9},"gte8.1.0_lt8.1.12","8.1.0"]