PHP 8.2.x < 8.2.9 Multiple Vulnerabilities

critical Nessus Plugin ID 179906

Language:

Version 1.8 May 27, 2025, 1:54 AM Plugin requirements (Remove enable_cgi_scanning attribute from PHP plugins) Plugin Feed: 202505270154
Version 1.7 Nov 22, 2024, 4:32 PM Plugin metadata (remove script_exclude_keys for CGI scanning) Plugin Feed: 202411221632
Version 1.6 Jun 7, 2024, 4:47 PM IAVM reference Plugin Feed: 202406071647
Version 1.5 Jun 4, 2024, 12:08 PM Required Scan configuration ("Enable cgi scanning" set to "True") Plugin Feed: 202406041208
Version 1.4 Oct 30, 2023, 4:49 PM CVSS metrics ("CVSSv2 score" changed from 7.5 to 10.0. "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P" to "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C") Plugin Feed: 202310301649
Version 1.3 Sep 13, 2023, 4:22 PM CVSS metrics ("CVSSv2 score" changed from 10.0 to 7.5. "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C" to "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P") Plugin Feed: 202309131622
Version 1.3 Oct 30, 2023, 2:59 PM CVSS metrics ("CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P" to "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C") CVSS metrics ("CVSSv2 score" changed from 7.5 to 10.0) Plugin Feed: 202310301459
Version 1.2 Aug 22, 2023, 1:59 PM CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C") Exploit attributes ("Exploit available" set to "True". "Exploitability ease" changed from "No known exploits are available" to "Exploits are available") CVSS metrics ("CVSSv2 score" changed from 7.5 to 10.0. "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P" to "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C") Plugin Feed: 202308221359
Version 1.1 Aug 18, 2023, 2:03 PM STIG Severity (set to "I") IAVM reference Plugin Feed: 202308181403
Version 1.0 Aug 17, 2023, 2:04 AM New Plugin Feed: 202308170204

* Changelogs are generally available for changes made after Nov 1, 2022