CVE-2018-19396
ext/standard/var_unserializer.c in PHP 5.x through 7.1.24 allows attackers to cause a denial of service (application crash) via an unserialize call for the com, dotnet, or variant class.
We have discovered 1,692,291 live websites that are affected by CVE-2018-19396.
Affected Software
| Product |  PHP |
| Category | Programming Languages |
| Vulnerable Domains | 1,692,291 live websites (23% of PHP install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 249 versions ( 49% of all versions) |
Details
- Published - Nov 20, 2018
- Updated - Aug 5, 2024
CVE References
Website Distribution by Country
Number of websites using CVE-2018-19396 United States | 345,630 websites |
 Russia | 210,675 websites |
 France | 124,282 websites |
 Taiwan | 112,188 websites |
 Japan | 109,264 websites |
 Germany | 108,728 websites |
 Netherlands | 71,547 websites |
 China | 63,308 websites |
 GB | 45,288 websites |
 Italy | 36,468 websites |
Website Distribution by TLD
Number of websites using CVE-2018-19396| .com | 704,080 websites |
| .ru | 176,686 websites |
| .de | 66,314 websites |
| .net | 57,075 websites |
| .fr | 47,787 websites |
| .org | 45,709 websites |
| .nl | 45,462 websites |
| .jp | 28,991 websites |
| .co.uk | 28,376 websites |
| .it | 26,298 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2018-19396
Top websites that are affected by CVE-2018-19396. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ****.org | China | *** | |
| *****.***********.com |  Canada | *** | |
| **********.com | United States | *** | |
| ******************.com | United States | *,*** | |
| ***.org | Italy | *,*** | |
| *********.******.net | United States | *,*** | |
| ****.com | United States | *,*** | |
| ********.com | United States | *,*** | |
| ********.org | United States | *,*** | |
| ******.de | Germany | *,*** |