VulnerableCode Package Details - pkg:alpm/archlinux/php@7.4.13-2

Search for packages

Package details: pkg:alpm/archlinux/php@7.4.13-2

Essentials
History (5)

purl	pkg:alpm/archlinux/php@7.4.13-2

Next non-vulnerable version	7.4.14-1
Latest non-vulnerable version	8.1.7-1
Risk	3.1

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-7uaj-hk6j-aaas Aliases: CVE-2020-7071	In PHP versions 7.3.x below 7.3.26, 7.4.x below 7.4.14 and 8.0.0, when validating URL with functions like filter_var($url, FILTER_VALIDATE_URL), PHP will accept an URL with invalid password as valid URL. This may lead to functions that rely on URL being valid to mis-parse the URL and produce wrong data as components of the URL.	7.4.14-1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:46:46.855368+00:00	Arch Linux Importer	Affected by	VCID-7uaj-hk6j-aaas	https://security.archlinux.org/AVG-1415	36.0.0
2025-01-16T14:51:08.620595+00:00	Arch Linux Importer	Affected by	VCID-7uaj-hk6j-aaas	https://security.archlinux.org/AVG-1415	35.1.0
2024-09-18T02:02:07.713951+00:00	Arch Linux Importer	Affected by	VCID-7uaj-hk6j-aaas	https://security.archlinux.org/AVG-1415	34.0.1
2024-01-12T23:41:41.705311+00:00	Arch Linux Importer	Affected by	VCID-7uaj-hk6j-aaas	https://security.archlinux.org/AVG-1415	34.0.0rc2
2024-01-03T22:28:10.178409+00:00	Arch Linux Importer	Affected by	VCID-7uaj-hk6j-aaas	https://security.archlinux.org/AVG-1415	34.0.0rc1