Description

PHP 4.3.4 and earlier in Apache 1.x and 2.x (mod_php) can leak global variables between virtual hosts that are handled by the same Apache child process but have different settings, which could allow remote attackers to obtain sensitive information.

Remediation

References

CVE-2004-0263

Related Vulnerabilities

Oracle Database Server CVE-2011-0806 Vulnerability (CVE-2011-0806)

WordPress Plugin Slimstat Analytics Cross-Site Scripting (3.5.5)

WordPress Plugin Import Spreadsheets from Microsoft Excel Cross-Site Scripting (10.1.3)

WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2017-5611)

WordPress Plugin Ultimate Addons for Elementor Multiple Cross-Site Scripting Vulnerabilities (1.29.2)

Severity

Medium

Classification

CVE-2004-0263

Tags

Missing Update Known Vulnerabilities