Vulnerabilities

Report: - PHPUnit: Argument injection via newline in PHP INI values forwarded to child pro... CVE-2026-41570

2026-05-08 0 views admin

CVE ID :CVE-2026-41570 Published : May 8, 2026, 2:33 p.m. | 54 minutes ago Description :PHPUnit is a testing framework for PHP. In versions 12.5.21 and 13.1.5, PHPUnit forwards PHP INI settings to child processes (used for isolated/PHPT test execution) as -d name=value command-line arguments without neutralizing INI metacharacters. Because PHP's INI parser interprets

CVE Details

CVE ID

CVE-2026-41570

Published

May 8, 2026

Affected Product: PHP

🏷️ Tags

reportphpunitargumentinjectionnewlinevaluesforwardedchild41570cve

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: - PHPUnit: Argument injection via newline in PHP INI values forwarded to child pro... CVE-2026-41570

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: CVE-2026-42160 - Data Space Portal: Incorrect Authorization and Client-Side Enforcement of Server

Report: CVE-2026-42190 - RedwoodSDK: Same-site CSRF in in server actions - Analysis

Report: CVE-2026-42189 - Russh: Pre-auth DoS via unbounded allocation in keyboard-interactive auth - Guide

Report: CVE-2026-42181 - Lemmy: SSRF and internal image disclosure in post link metadata via unvalidated

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting