March 2007 is over and so is the Month of PHP Bugs project initiated by Stefan Esser. The number of PHP flaws revealed during one month it’s astonishing 44

PHP ext/filter Space Trimming Buffer Underflow Vulnerability; PHP zip:// URL Wrapper safemode and open_basedir Bypass Vulnerability

Day 10 of the Month of PHP Bugs brings a new PHP vulnerability which occurs when using ext/filter and ASCII data. This raises the vulnerability count to 18.

Day 9 of the PHP month of the bugs brings a vulnerability which involves POST data in the FDF format. I’m just wondering if Stefan Esser’s commitment to release at least one PHO bug a day will last until March 31. Anyway, here is number 17