gd_ctx.c in the GD component in PHP 5.4.x prior to 5.4.32 and 5.5.x prior to 5.5.16 does not ensure that pathnames lack %00 sequences, which might allow remote malicious users to overwrite arbitrary files via crafted input to an application that calls the (1) imagegd, (2) imagegd2, (3) imagegif, (4) imagejpeg, (5) imagepng, (6) imagewbmp, or (7) imagewebp function.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
php php 5.4.0 |
||
php php 5.4.12 |
||
php php 5.4.13 |
||
php php 5.4.18 |
||
php php 5.4.19 |
||
php php 5.4.25 |
||
php php 5.4.26 |
||
php php 5.4.4 |
||
php php 5.4.5 |
||
php php 5.5.6 |
||
php php 5.5.5 |
||
php php 5.5.12 |
||
php php 5.5.11 |
||
php php 5.5.0 |
||
php php 5.4.10 |
||
php php 5.4.11 |
||
php php 5.4.15 |
||
php php 5.4.21 |
||
php php 5.4.22 |
||
php php 5.4.29 |
||
php php 5.4.3 |
||
php php 5.4.9 |
||
php php 5.5.9 |
||
php php 5.5.2 |
||
php php 5.5.15 |
||
php php 5.4.16 |
||
php php 5.4.17 |
||
php php 5.4.23 |
||
php php 5.4.24 |
||
php php 5.4.30 |
||
php php 5.4.31 |
||
php php 5.5.8 |
||
php php 5.5.7 |
||
php php 5.5.14 |
||
php php 5.5.13 |
||
php php 5.4.1 |
||
php php 5.4.14 |
||
php php 5.4.2 |
||
php php 5.4.20 |
||
php php 5.4.27 |
||
php php 5.4.28 |
||
php php 5.4.6 |
||
php php 5.4.7 |
||
php php 5.4.8 |
||
php php 5.5.4 |
||
php php 5.5.3 |
||
php php 5.5.10 |
||
php php 5.5.1 |