Use-after-free vulnerability in the add_post_var function in the Posthandler component in PHP 5.6.x prior to 5.6.1 might allow remote malicious users to execute arbitrary code by leveraging a third-party filter extension that accesses a certain ksep value.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
php php |