Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.4
CVSSv2

CVE-2001-1247

Published: 06/12/2001 Updated: 25/06/2012
CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10
VMScore: 570
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N
Subscribe to Php

Vulnerability Summary

PHP 4.0.4pl1 and 4.0.5 in safe mode allows remote malicious users to read and write files owned by the web server UID by uploading a PHP script that uses the error_log function to access the files.

Vulnerable Product Search on Vulmon Subscribe to Product

php php 4.0.4pl1

php php 4.0.5

References

CWE-264http://online.securityfocus.com/archive/1/194425http://www.redhat.com/support/errata/RHSA-2002-035.htmlhttp://www.php.net/do_download.php?download_file=php-4.1.2.tar.gzhttp://www.osvdb.org/5440https://nvd.nist.gov
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671unauthorizedCVE-2024-4776CVE-2024-3407CVE-2024-26026CVE-2024-32888wirelessCVE-2024-4656template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook