CVE-2020-7068
Use of freed hash key in the phar_parse_zipfile functionIn PHP versions 7.2.x below 7.2.33, 7.3.x below 7.3.21 and 7.4.x below 7.4.9, while processing PHAR files using phar extension, phar_parse_zipfile could be tricked into accessing freed memory, which could lead to a crash or information disclosure.
We have discovered 684,803 live websites that are affected by CVE-2020-7068.
Contact us to get more info
Affected Software
| |
---|
Product | PHP |
Category | Programming Languages |
Vulnerable Versions | - from 7.2 before 7.2.33
- from 7.3 before 7.3.21
- from 7.4 before 7.4.9
|
Total Vulnerable Versions | 507 |
Vulnerable Domains | 684,803 live websites (5.66% of PHP install base) |
Common Weakness Enumeration
CWE-416 Use After Free
Distribution by Website Rank
The diagram provides a graphic representation of the correlation between the occurrence of CVE-2020-7068 and the relative popularity of websites