CVE-2013-4113

ext/xml/xml.c in PHP before 5.3.27 does not properly consider parsing depth, which allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a crafted document that is processed by the xml_parse_into_struct function.

We have discovered 384,585 live websites that are affected by CVE-2013-4113.

Run a Free Instant Scan



Affected Software

Product  PHP
Category Programming Languages
Vulnerable Domains384,585 live websites (100% of PHP install base)
Vulnerable Versions
  • from 0 through 5.3.27
Vulnerable Versions Count0 versions ( less than 0.1% of all versions)



Details

  • Published - Jul 13, 2013
  • Updated - Aug 6, 2024

Website Distribution by Country

Number of websites using CVE-2013-4113
United States33,864 websites


Taiwan103,894 websites
Russia36,254 websites
Germany27,444 websites
Japan25,078 websites
Netherlands24,709 websites
Korea, South16,273 websites
China12,544 websites
France11,662 websites

Website Distribution by TLD

Number of websites using CVE-2013-4113
.com165,608 websites
.ru31,553 websites
.de24,217 websites
.nl16,773 websites
.net14,295 websites
.info9,496 websites
.org8,281 websites
.jp7,497 websites
.cz5,315 websites
.it4,879 websites

Websites affected by CVE-2013-4113

Top websites that are affected by CVE-2013-4113. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
*****.***********.com Canada***
**********.com United States***
************.ru Russia***
***.org Italy*,***
**********.us United States*,***
*****.***.tw Taiwan*,***
********.org France*,***
*********.com GB*,***
*********.com United States*,***
********************.ru Russia*,***
See full domain list

FAQ

A total of 384,585 websites have been identified as vulnerable to CVE-2013-4113, based on global website indexing conducted by WebTechSurvey.
The PHP is affected by the CVE-2013-4113 vulnerability.
PHP versions up to and including 5.3.27 are vulnerable to CVE-2013-4113.

References