CVE-2018-19396
ext/standard/var_unserializer.c in PHP 5.x through 7.1.24 allows attackers to cause a denial of service (application crash) via an unserialize call for the com, dotnet, or variant class.
We have discovered 2,336,345 live websites that are affected by CVE-2018-19396.
Affected Software
| Product |  PHP |
| Category | Programming Languages |
| Vulnerable Domains | 2,336,345 live websites (26.77% of PHP install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 307 versions ( 56.12% of all versions) |
Details
- Published - Nov 21, 2018
- Updated - Aug 5, 2024
CVE References
CVE-2018-19396 usage by Country
 United States | 577,360 websites |
 Russia | 257,624 websites |
 France | 170,183 websites |
 Germany | 166,961 websites |
 Japan | 134,502 websites |
 Taiwan | 113,912 websites |
 Netherlands | 101,018 websites |
 China | 83,720 websites |
 GB | 57,259 websites |
 Poland | 41,994 websites |
CVE-2018-19396 usage by TLD
| .com | 979,930 websites |
| .ru | 220,567 websites |
| .de | 100,118 websites |
| .net | 85,056 websites |
| .nl | 69,526 websites |
| .org | 63,111 websites |
| .fr | 61,314 websites |
| .co.uk | 38,938 websites |
| .jp | 35,850 websites |
| .pl | 35,138 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2018-19396
Top websites that are affected by CVE-2018-19396. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ****.org | China | *** | |
| *****.***********.com |  Canada | *** | |
| **********.com | United States | *** | |
| **********.com | United States | *** | |
| ************.***.ar |  Argentina | *,*** | |
| *****.ru | Russia | *,*** | |
| ********.*********.com |  Singapore | *,*** | |
| ******************.com | United States | *,*** | |
| ***.org | United States | *,*** | |
| *********.******.net | United States | *,*** |