cvelist/2018/5xxx/CVE-2018-5712.json

{
   "CVE_data_meta" : {
      "ASSIGNER" : "cve@mitre.org",
      "ID" : "CVE-2018-5712",
      "STATE" : "PUBLIC"
   },
   "affects" : {
      "vendor" : {
         "vendor_data" : [
            {
               "product" : {
                  "product_data" : [
                     {
                        "product_name" : "n/a",
                        "version" : {
                           "version_data" : [
                              {
                                 "version_value" : "n/a"
                              }
                           ]
                        }
                     }
                  ]
               },
               "vendor_name" : "n/a"
            }
         ]
      }
   },
   "data_format" : "MITRE",
   "data_type" : "CVE",
   "data_version" : "4.0",
   "description" : {
      "description_data" : [
         {
            "lang" : "eng",
            "value" : "An issue was discovered in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1. There is Reflected XSS on the PHAR 404 error page via the URI of a request for a .phar file."
         }
      ]
   },
   "problemtype" : {
      "problemtype_data" : [
         {
            "description" : [
               {
                  "lang" : "eng",
                  "value" : "n/a"
               }
            ]
         }
      ]
   },
   "references" : {
      "reference_data" : [
         {
            "name" : "[debian-lts-announce] 20180120 [SECURITY] [DLA 1251-1] php5 security update",
            "refsource" : "MLIST",
            "url" : "https://lists.debian.org/debian-lts-announce/2018/01/msg00025.html"
         },
         {
            "name" : "http://php.net/ChangeLog-5.php",
            "refsource" : "CONFIRM",
            "url" : "http://php.net/ChangeLog-5.php"
         },
         {
            "name" : "http://php.net/ChangeLog-7.php",
            "refsource" : "CONFIRM",
            "url" : "http://php.net/ChangeLog-7.php"
         },
         {
            "name" : "https://bugs.php.net/bug.php?id=74782",
            "refsource" : "CONFIRM",
            "url" : "https://bugs.php.net/bug.php?id=74782"
         },
         {
            "name" : "RHSA-2018:1296",
            "refsource" : "REDHAT",
            "url" : "https://access.redhat.com/errata/RHSA-2018:1296"
         },
         {
            "name" : "USN-3566-1",
            "refsource" : "UBUNTU",
            "url" : "https://usn.ubuntu.com/3566-1/"
         },
         {
            "name" : "USN-3600-1",
            "refsource" : "UBUNTU",
            "url" : "https://usn.ubuntu.com/3600-1/"
         },
         {
            "name" : "USN-3600-2",
            "refsource" : "UBUNTU",
            "url" : "https://usn.ubuntu.com/3600-2/"
         },
         {
            "name" : "102742",
            "refsource" : "BID",
            "url" : "http://www.securityfocus.com/bid/102742"
         },
         {
            "name" : "104020",
            "refsource" : "BID",
            "url" : "http://www.securityfocus.com/bid/104020"
         },
         {
            "name" : "1040363",
            "refsource" : "SECTRACK",
            "url" : "http://www.securitytracker.com/id/1040363"
         }
      ]
   }
}
- Synchronized data. 2018-01-16 04:04:11 -05:00			`{`
			`"CVE_data_meta" : {`
			`"ASSIGNER" : "cve@mitre.org",`
			`"ID" : "CVE-2018-5712",`
			`"STATE" : "PUBLIC"`
			`},`
			`"affects" : {`
			`"vendor" : {`
			`"vendor_data" : [`
			`{`
			`"product" : {`
			`"product_data" : [`
			`{`
			`"product_name" : "n/a",`
			`"version" : {`
			`"version_data" : [`
			`{`
			`"version_value" : "n/a"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name" : "n/a"`
			`}`
			`]`
			`}`
			`},`
			`"data_format" : "MITRE",`
			`"data_type" : "CVE",`
			`"data_version" : "4.0",`
			`"description" : {`
			`"description_data" : [`
			`{`
			`"lang" : "eng",`
			`"value" : "An issue was discovered in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1. There is Reflected XSS on the PHAR 404 error page via the URI of a request for a .phar file."`
			`}`
			`]`
			`},`
			`"problemtype" : {`
			`"problemtype_data" : [`
			`{`
			`"description" : [`
			`{`
			`"lang" : "eng",`
			`"value" : "n/a"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references" : {`
			`"reference_data" : [`
- Synchronized data. 2018-02-02 06:02:32 -05:00			`{`
- Added 'refsource' and 'name' attributes for reference urls and aligned treatment of whitespace in descriptions with data downloads. 2018-04-05 09:33:01 -04:00			`"name" : "[debian-lts-announce] 20180120 [SECURITY] [DLA 1251-1] php5 security update",`
			`"refsource" : "MLIST",`
- Synchronized data. 2018-02-02 06:02:32 -05:00			`"url" : "https://lists.debian.org/debian-lts-announce/2018/01/msg00025.html"`
			`},`
- Synchronized data. 2018-01-16 04:04:11 -05:00			`{`
- Added 'refsource' and 'name' attributes for reference urls and aligned treatment of whitespace in descriptions with data downloads. 2018-04-05 09:33:01 -04:00			`"name" : "http://php.net/ChangeLog-5.php",`
			`"refsource" : "CONFIRM",`
- Synchronized data. 2018-01-16 04:04:11 -05:00			`"url" : "http://php.net/ChangeLog-5.php"`
			`},`
			`{`
- Added 'refsource' and 'name' attributes for reference urls and aligned treatment of whitespace in descriptions with data downloads. 2018-04-05 09:33:01 -04:00			`"name" : "http://php.net/ChangeLog-7.php",`
			`"refsource" : "CONFIRM",`
- Synchronized data. 2018-01-16 04:04:11 -05:00			`"url" : "http://php.net/ChangeLog-7.php"`
			`},`
			`{`
- Added 'refsource' and 'name' attributes for reference urls and aligned treatment of whitespace in descriptions with data downloads. 2018-04-05 09:33:01 -04:00			`"name" : "https://bugs.php.net/bug.php?id=74782",`
			`"refsource" : "CONFIRM",`
- Synchronized data. 2018-01-16 04:04:11 -05:00			`"url" : "https://bugs.php.net/bug.php?id=74782"`
- Synchronized data. 2018-01-20 06:02:15 -05:00			`},`
- Synchronized data. 2018-05-03 06:02:50 -04:00			`{`
			`"name" : "RHSA-2018:1296",`
			`"refsource" : "REDHAT",`
			`"url" : "https://access.redhat.com/errata/RHSA-2018:1296"`
			`},`
- Synchronized data. 2018-03-15 06:05:11 -04:00			`{`
- Added 'refsource' and 'name' attributes for reference urls and aligned treatment of whitespace in descriptions with data downloads. 2018-04-05 09:33:01 -04:00			`"name" : "USN-3566-1",`
			`"refsource" : "UBUNTU",`
- Synchronized data. 2018-03-15 06:05:11 -04:00			`"url" : "https://usn.ubuntu.com/3566-1/"`
			`},`
- Synchronized data. 2018-03-20 06:05:12 -04:00			`{`
- Added 'refsource' and 'name' attributes for reference urls and aligned treatment of whitespace in descriptions with data downloads. 2018-04-05 09:33:01 -04:00			`"name" : "USN-3600-1",`
			`"refsource" : "UBUNTU",`
- Synchronized data. 2018-03-20 06:05:12 -04:00			`"url" : "https://usn.ubuntu.com/3600-1/"`
			`},`
- Synchronized data. 2018-05-16 06:05:42 -04:00			`{`
			`"name" : "USN-3600-2",`
			`"refsource" : "UBUNTU",`
			`"url" : "https://usn.ubuntu.com/3600-2/"`
			`},`
- Synchronized data. 2018-01-20 06:02:15 -05:00			`{`
- Added 'refsource' and 'name' attributes for reference urls and aligned treatment of whitespace in descriptions with data downloads. 2018-04-05 09:33:01 -04:00			`"name" : "102742",`
			`"refsource" : "BID",`
- Synchronized data. 2018-01-20 06:02:15 -05:00			`"url" : "http://www.securityfocus.com/bid/102742"`
- Synchronized data. 2018-02-16 06:05:26 -05:00			`},`
- Synchronized data. 2018-05-01 06:04:10 -04:00			`{`
			`"name" : "104020",`
			`"refsource" : "BID",`
			`"url" : "http://www.securityfocus.com/bid/104020"`
			`},`
- Synchronized data. 2018-02-16 06:05:26 -05:00			`{`
- Added 'refsource' and 'name' attributes for reference urls and aligned treatment of whitespace in descriptions with data downloads. 2018-04-05 09:33:01 -04:00			`"name" : "1040363",`
			`"refsource" : "SECTRACK",`
- Synchronized data. 2018-02-16 06:05:26 -05:00			`"url" : "http://www.securitytracker.com/id/1040363"`
- Synchronized data. 2018-01-16 04:04:11 -05:00			`}`
			`]`
			`}`
			`}`