Register

cve 2024 11236 uncontrolled long string inputs to the ldap_escape()

Thread starter Pinuccio
Start date Dec 19, 2024

P

Pinuccio

Well-known member

Registered

Dec 19, 2024

#1

What is this thing? Can you help me?

Splicho

Synapse-Themes.cc Owner

Staff member

Moderator

Collaborate

Registered

Dec 19, 2024

#2

php vulnaribility

https://nvd.nist.gov/vuln/detail/CVE-2024-11236
https://github.com/php/php-src/security/advisories/GHSA-5hqh-c84r-qjcv

P

Pinuccio

Well-known member

Registered

By Pinuccio
Dec 19, 2024

#3

Splicho said:
php vulnaribility

https://nvd.nist.gov/vuln/detail/CVE-2024-11236
https://github.com/php/php-src/security/advisories/GHSA-5hqh-c84r-qjcv

SplichoI use namecheap php 8.3 why do I get this vulnerability?

P

Pinuccio

Well-known member

Registered

By Pinuccio
Dec 19, 2024

#4

Splicho said:
php vulnaribility

https://nvd.nist.gov/vuln/detail/CVE-2024-11236
https://github.com/php/php-src/security/advisories/GHSA-5hqh-c84r-qjcv

SplichoWho should I contact at namecheap or is it a vulnerability in xenforo 2.3.4? I don't understand

Splicho

Synapse-Themes.cc Owner

Staff member

Moderator

Collaborate

Registered

By Splicho
Dec 20, 2024

#5

Pinuccio said:
Who should I contact at namecheap or is it a vulnerability in xenforo 2.3.4? I don't understand

PinuccioIt's a vulnerability in PHP itself, there's nothing much you can do about it than waiting for it to be fixed by the PHP devs.

Either way I wouldn't bother. It seems like it is not directly affecting XenForo as a whole.

P

Pinuccio

Well-known member

Registered

By Pinuccio
Dec 20, 2024

#6

Splicho said:
It's a vulnerability in PHP itself, there's nothing much you can do about it than waiting for it to be fixed by the PHP devs.

Either way I wouldn't bother. It seems like it is not directly affecting XenForo as a whole.

SplichoOkay thanks Okay thanks Okay thanks

You must log in or register to reply here.

Top