CVE-2022-31628


phar wrapper can occur dos when using quine gzip file

In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress "quines" gzip files, resulting in an infinite loop.



We have discovered 901,330 live websites that are affected by CVE-2022-31628.

Contact us to get more info




Affected Software

Product  PHP
Category Programming Languages
Vulnerable Versions
  • from 7.4 before 7.4.31
  • from 8 before 8.0.24
  • from 8.1 before 8.1.11
Total Vulnerable Versions516
Vulnerable Domains901,330 live websites (8.62% of PHP install base)


Common Weakness Enumeration


CWE-674 Uncontrolled Recursion



Details

  • Published - Sep 27, 2022
  • Updated - Dec 15, 2022

Credits

  • reported by ohseungju5 at gmail dot com





Countries

United States407,383 websites



France195,149 websites
Russia40,064 websites
Japan35,956 websites
Germany34,025 websites
Netherlands15,050 websites
Argentina14,513 websites
Brazil12,254 websites
China10,546 websites
GB10,315 websites

TLDs

.com441,871 websites
.fr77,941 websites
.org52,554 websites
.ru35,568 websites
.net29,056 websites
.de17,676 websites
.nl13,245 websites
.pl12,836 websites
.com.br12,231 websites
.it11,772 websites

Vulnerable Versions

Vulnerable versions are highlighted in red


Websites affected by CVE-2022-31628

Top websites that are affected by CVE-2022-31628. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
*********.com United States***
*****.pl Poland*,***
***.*****.pm United States*,***
*******.com Germany*,***
****.org United States*,***
********.jp Japan*,***
***************.org United States*,***
**********.org United States*,***
******.org United States*,***
******.com United States*,***
See full domain list