Skip to content

Commit 8187c9b

Browse files
lightswitch05lightswitch05
committed
Automatic github actions updates. Changes found @lightswitch05 
1 parent 772d41e commit 8187c9b

File tree

1 file changed

+6
-6
lines changed

1 file changed

+6
-6
lines changed

docs/rules-v1.json

Lines changed: 6 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,5 @@
11
{
2-
"lastUpdatedDate": "2025-07-23T03:03:34+0000",
2+
"lastUpdatedDate": "2025-07-23T13:45:02+0000",
33
"name": "PHP Version Audit",
44
"website": "https://github.com/lightswitch05/php-version-audit",
55
"licence": "https://github.com/lightswitch05/php-version-audit/blob/master/LICENSE",
@@ -4202,9 +4202,9 @@
42024202
},
42034203
"CVE-2025-1220": {
42044204
"id": "CVE-2025-1220",
4205-
"baseScore": null,
4205+
"baseScore": 5.3,
42064206
"publishedDate": "2025-07-13T23:15:00+0000",
4207-
"lastModifiedDate": "2025-07-14T16:15:00+0000",
4207+
"lastModifiedDate": "2025-07-22T17:01:00+0000",
42084208
"description": "In PHP versions:8.1.* before 8.1.33, 8.2.* before 8.2.29, 8.3.* before 8.3.23, 8.4.* before 8.4.10 some functions like fsockopen() lack validation that the hostname supplied does not contain null characters. This may lead to other functions like parse_url() treat the hostname in different way, thus opening way to security problems if the user code implements access checks before access using such functions."
42094209
},
42104210
"CVE-2025-1734": {
@@ -4216,9 +4216,9 @@
42164216
},
42174217
"CVE-2025-1735": {
42184218
"id": "CVE-2025-1735",
4219-
"baseScore": null,
4219+
"baseScore": 7.5,
42204220
"publishedDate": "2025-07-13T23:15:00+0000",
4221-
"lastModifiedDate": "2025-07-13T23:15:00+0000",
4221+
"lastModifiedDate": "2025-07-22T17:04:00+0000",
42224222
"description": "In PHP versions:8.1.* before 8.1.33, 8.2.* before 8.2.29, 8.3.* before 8.3.23, 8.4.* pgsql and pdo_pgsql escaping functions do not check if the underlying quoting functions returned errors. This\u00a0could cause crashes if Postgres server rejects the string as invalid."
42234223
},
42244224
"CVE-2025-1736": {
@@ -4239,7 +4239,7 @@
42394239
"id": "CVE-2025-6491",
42404240
"baseScore": null,
42414241
"publishedDate": "2025-07-13T22:15:00+0000",
4242-
"lastModifiedDate": "2025-07-14T16:15:00+0000",
4242+
"lastModifiedDate": "2025-07-22T16:51:00+0000",
42434243
"description": "In PHP versions:8.1.* before 8.1.33, 8.2.* before 8.2.29, 8.3.* before 8.3.23, 8.4.* before 8.4.10 when parsing XML data in SOAP extensions, overly large (>2Gb) XML namespace prefix may lead to null pointer dereference. This may lead to crashes and affect the availability of the target server."
42444244
}
42454245
}

0 commit comments

Comments
 (0)