swoole/swoole-src

swoole/swoole-src

Releases406

Frequency1 week 4 days

Last Release 20 days ago

Stars18.9K

🚀 Coroutine-based concurrency library for PHP

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2026-24814 ↗	Jan 27, 2026Tuesday, 27 January 2026, 09:15	—	—
Integer Overflow or Wraparound vulnerability in swoole swoole-src (thirdparty/hiredis modules). This vulnerability is associated with program files sds.C. This issue affects swoole-src: before 6.0.2.
CVE-2020-24275 ↗	Jul 20, 2023Thursday, 20 July 2023, 20:15	6.5 MEDIUM	—
A HTTP response header injection vulnerability in Swoole v4.5.2 allows attackers to execute arbitrary code via supplying a crafted URL.
CVE-2019-15518 ↗	Aug 23, 2019Friday, 23 August 2019, 15:15	—	5 MEDIUM
Swoole before 4.2.13 allows directory traversal in swPort_http_static_handler.
CVE-2018-15503 ↗	Aug 18, 2018Saturday, 18 August 2018, 02:29	—	5 MEDIUM
The unpack implementation in Swoole version 4.0.4 lacks correct size checks in the deserialization process. An attacker can craft a serialized object to exploit this vulnerability and cause a SEGV.