{"url":"http://public2.vulnerablecode.io/api/packages/130093?format=json","purl":"pkg:rpm/redhat/php@4.3.9-3?arch=15","type":"rpm","namespace":"redhat","name":"php","version":"4.3.9-3","qualifiers":{"arch":"15"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/88857?format=json","vulnerability_id":"VCID-5jpq-kgvy-gbfk","summary":"security flaw","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-3017.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-3017.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-3017","reference_id":"","reference_type":"","scores":[{"value":"0.04782","scoring_system":"epss","scoring_elements":"0.8943","published_at":"2026-04-01T12:55:00Z"},{"value":"0.04782","scoring_system":"epss","scoring_elements":"0.89434","published_at":"2026-04-02T12:55:00Z"},{"value":"0.04782","scoring_system":"epss","scoring_elements":"0.89445","published_at":"2026-04-04T12:55:00Z"},{"value":"0.04782","scoring_system":"epss","scoring_elements":"0.89447","published_at":"2026-04-07T12:55:00Z"},{"value":"0.04782","scoring_system":"epss","scoring_elements":"0.89463","published_at":"2026-04-08T12:55:00Z"},{"value":"0.04782","scoring_system":"epss","scoring_elements":"0.89467","published_at":"2026-04-09T12:55:00Z"},{"value":"0.04782","scoring_system":"epss","scoring_elements":"0.89475","published_at":"2026-04-11T12:55:00Z"},{"value":"0.04782","scoring_system":"epss","scoring_elements":"0.89474","published_at":"2026-04-12T12:55:00Z"},{"value":"0.04782","scoring_system":"epss","scoring_elements":"0.89468","published_at":"2026-04-13T12:55:00Z"},{"value":"0.04782","scoring_system":"epss","scoring_elements":"0.89483","published_at":"2026-04-18T12:55:00Z"},{"value":"0.04782","scoring_system":"epss","scoring_elements":"0.89481","published_at":"2026-04-21T12:55:00Z"},{"value":"0.04782","scoring_system":"epss","scoring_elements":"0.89495","published_at":"2026-04-24T12:55:00Z"},{"value":"0.04782","scoring_system":"epss","scoring_elements":"0.89499","published_at":"2026-04-26T12:55:00Z"},{"value":"0.04782","scoring_system":"epss","scoring_elements":"0.895","published_at":"2026-04-29T12:55:00Z"},{"value":"0.04782","scoring_system":"epss","scoring_elements":"0.89507","published_at":"2026-05-05T12:55:00Z"},{"value":"0.04782","scoring_system":"epss","scoring_elements":"0.89525","published_at":"2026-05-07T12:55:00Z"},{"value":"0.04782","scoring_system":"epss","scoring_elements":"0.8954","published_at":"2026-05-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-3017"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618131","reference_id":"1618131","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618131"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0549","reference_id":"RHSA-2006:0549","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0549"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0567","reference_id":"RHSA-2006:0567","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0567"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0568","reference_id":"RHSA-2006:0568","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0568"}],"fixed_packages":[],"aliases":["CVE-2006-3017"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5jpq-kgvy-gbfk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/60607?format=json","vulnerability_id":"VCID-r834-qnr8-ykes","summary":"PHP is affected by multiple issues, including a buffer overflow in\n    wordwrap() which may lead to execution of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-1990.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-1990.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-1990","reference_id":"","reference_type":"","scores":[{"value":"0.01062","scoring_system":"epss","scoring_elements":"0.77801","published_at":"2026-05-09T12:55:00Z"},{"value":"0.01062","scoring_system":"epss","scoring_elements":"0.77685","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01062","scoring_system":"epss","scoring_elements":"0.77716","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01062","scoring_system":"epss","scoring_elements":"0.77725","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01062","scoring_system":"epss","scoring_elements":"0.7774","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01062","scoring_system":"epss","scoring_elements":"0.77752","published_at":"2026-05-05T12:55:00Z"},{"value":"0.01062","scoring_system":"epss","scoring_elements":"0.77782","published_at":"2026-05-07T12:55:00Z"},{"value":"0.01062","scoring_system":"epss","scoring_elements":"0.77674","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01062","scoring_system":"epss","scoring_elements":"0.77657","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01062","scoring_system":"epss","scoring_elements":"0.77656","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01062","scoring_system":"epss","scoring_elements":"0.77693","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01062","scoring_system":"epss","scoring_elements":"0.77692","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01234","scoring_system":"epss","scoring_elements":"0.79148","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01234","scoring_system":"epss","scoring_elements":"0.79173","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01234","scoring_system":"epss","scoring_elements":"0.79159","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01234","scoring_system":"epss","scoring_elements":"0.79184","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01234","scoring_system":"epss","scoring_elements":"0.79192","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01234","scoring_system":"epss","scoring_elements":"0.79142","published_at":"2026-04-01T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-1990"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618082","reference_id":"1618082","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618082"},{"reference_url":"https://security.gentoo.org/glsa/200605-08","reference_id":"GLSA-200605-08","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200605-08"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0501","reference_id":"RHSA-2006:0501","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0501"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0549","reference_id":"RHSA-2006:0549","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0549"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0568","reference_id":"RHSA-2006:0568","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0568"},{"reference_url":"https://usn.ubuntu.com/320-1/","reference_id":"USN-320-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/320-1/"}],"fixed_packages":[],"aliases":["CVE-2006-1990"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-r834-qnr8-ykes"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/88887?format=json","vulnerability_id":"VCID-xg8s-vuha-r7cw","summary":"security flaw","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-1494.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-1494.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-1494","reference_id":"","reference_type":"","scores":[{"value":"0.05835","scoring_system":"epss","scoring_elements":"0.90499","published_at":"2026-04-01T12:55:00Z"},{"value":"0.05835","scoring_system":"epss","scoring_elements":"0.90502","published_at":"2026-04-02T12:55:00Z"},{"value":"0.05835","scoring_system":"epss","scoring_elements":"0.90513","published_at":"2026-04-04T12:55:00Z"},{"value":"0.05835","scoring_system":"epss","scoring_elements":"0.90519","published_at":"2026-04-07T12:55:00Z"},{"value":"0.05835","scoring_system":"epss","scoring_elements":"0.90531","published_at":"2026-04-08T12:55:00Z"},{"value":"0.05835","scoring_system":"epss","scoring_elements":"0.90537","published_at":"2026-04-09T12:55:00Z"},{"value":"0.05835","scoring_system":"epss","scoring_elements":"0.90546","published_at":"2026-04-11T12:55:00Z"},{"value":"0.05835","scoring_system":"epss","scoring_elements":"0.90545","published_at":"2026-04-12T12:55:00Z"},{"value":"0.05835","scoring_system":"epss","scoring_elements":"0.90539","published_at":"2026-04-13T12:55:00Z"},{"value":"0.05835","scoring_system":"epss","scoring_elements":"0.90557","published_at":"2026-04-18T12:55:00Z"},{"value":"0.05835","scoring_system":"epss","scoring_elements":"0.90555","published_at":"2026-04-21T12:55:00Z"},{"value":"0.05835","scoring_system":"epss","scoring_elements":"0.9057","published_at":"2026-04-26T12:55:00Z"},{"value":"0.05835","scoring_system":"epss","scoring_elements":"0.90566","published_at":"2026-04-29T12:55:00Z"},{"value":"0.05835","scoring_system":"epss","scoring_elements":"0.90578","published_at":"2026-05-05T12:55:00Z"},{"value":"0.05835","scoring_system":"epss","scoring_elements":"0.90596","published_at":"2026-05-07T12:55:00Z"},{"value":"0.05835","scoring_system":"epss","scoring_elements":"0.90608","published_at":"2026-05-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-1494"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618037","reference_id":"1618037","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618037"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/remote/27595.txt","reference_id":"CVE-2006-1494;OSVDB-24486","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/remote/27595.txt"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0549","reference_id":"RHSA-2006:0549","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0549"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0567","reference_id":"RHSA-2006:0567","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0567"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0568","reference_id":"RHSA-2006:0568","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0568"},{"reference_url":"https://usn.ubuntu.com/320-1/","reference_id":"USN-320-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/320-1/"}],"fixed_packages":[],"aliases":["CVE-2006-1494"],"risk_score":0.2,"exploitability":"2.0","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xg8s-vuha-r7cw"}],"fixing_vulnerabilities":[],"risk_score":"0.2","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/php@4.3.9-3%3Farch=15"}