slug: php

Explanation

PHPはサーバーサイドで動くプログラミング言語で、Webサイトの裏側を作るのに広く使われています。 WordPress、Laravel、Drupalなど、世界中の多くのサイトの土台になっています。 セキュリティ脆弱性の文脈では「インジェクション系」(攻撃文字列を実行させる) や「ファイルアップロードの不備」が典型的な弱点として知られています。
📌 Example
2017年のEquifax事件 (1.4億人の個人情報流出) は、Apache StrutsというJavaライブラリの脆弱性が原因でしたが、同様にPHPアプリケーションでも脆弱性が悪用された事例は多数あります。

🔖 Related tags

🛡 Vulnerabilities tagged with this 2,566

ID Title
CVE-2026-11520 Cross-Site Scripting (XSS) in CVE-2026-11520 (CVE-2026-11520)
CVE-2026-11519 Vulnerability in CVE-2026-11519 (CVE-2026-11519)
CVE-2026-11511 Vulnerability in CVE-2026-11511 (CVE-2026-11511)
CVE-2026-11512 Cross-Site Scripting (XSS) in CVE-2026-11512 (CVE-2026-11512)
CVE-2026-11515 Vulnerability in c (CVE-2026-11515)
CVE-2026-11514 Vulnerability in sqli (CVE-2026-11514)
CVE-2026-11513 Vulnerability in sqli (CVE-2026-11513)
CVE-2026-11507 Vulnerability in sqli (CVE-2026-11507)
CVE-2026-11506 Vulnerability in sqli (CVE-2026-11506)
CVE-2026-11510 Vulnerability in sqli (CVE-2026-11510)
CVE-2026-11508 Vulnerability in sqli (CVE-2026-11508)
CVE-2026-11509 Vulnerability in sqli (CVE-2026-11509)
CVE-2026-11501 A security flaw has been discovered in SourceCodester Hospitals Patient Records Management System...
CVE-2026-11495 Vulnerability in sqli (CVE-2026-11495)
CVE-2026-11490 Vulnerability in sqli (CVE-2026-11490)
CVE-2026-11489 A vulnerability was found in code-projects Online Music Site 1.0. This vulnerability affects...
CVE-2026-11488 A vulnerability has been found in code-projects Simple Flight Ticket Booking System 1.0. This...
CVE-2026-11483 A security flaw has been discovered in SourceCodester Class and Exam Timetabling System 1.0. This...
CVE-2026-11484 A weakness has been identified in SourceCodester Class and Exam Timetabling System 1.0. This...
CVE-2026-11485 A security vulnerability has been detected in SourceCodester Class and Exam Timetabling System 1...
CVE-2026-11486 A vulnerability was detected in SourceCodester Class and Exam Timetabling System 1.0. Affected by...
CVE-2026-11482 Vulnerability in sqli (CVE-2026-11482)
CVE-2022-50953 Path Traversal in wordpress (CVE-2022-50953)
CVE-2024-58348 Unrestricted File Upload in wordpress (CVE-2024-58348)
CVE-2021-47983 Cross-Site Scripting (XSS) in c (CVE-2021-47983)
CVE-2021-47984 Cross-Site Scripting (XSS) in wordpress (CVE-2021-47984)
CVE-2026-11480 Vulnerability in sqli (CVE-2026-11480)
CVE-2026-11476 Vulnerability in CVE-2026-11476 (CVE-2026-11476)
CVE-2023-54350 Vulnerability in c (CVE-2023-54350)
CVE-2023-54351 Cross-Site Scripting (XSS) in wordpress (CVE-2023-54351)

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →