PHP 4 prior to 4.4.5, and PHP 5 prior to 5.2.1, when register_globals is enabled, allows context-dependent malicious users to execute arbitrary code via deserialization of session data, which overwrites arbitrary global variables, as demonstrated by calling session_decode on a string beginning with "_SESSION|s:39:".
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
php php |