PHP 4.0 with cURL functions allows remote malicious users to bypass the open_basedir setting and read arbitrary files via a file: URL argument to the curl_init function.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
php php 4.0 |
||
php php 4.0.1 |
||
php php 4.0.5 |
||
php php 4.0.6 |
||
php php 4.0.2 |
||
php php 4.0.3 |
||
php php 4.0.7 |
||
php php 4.0.4 |