Description
This alert was generated using only banner information. It may be a false positive.
The php_register_variable_ex function in php_variables.c in PHP 5.3.9 allows remote attackers to execute arbitrary code via a request containing a large number of variables, related to improper handling of array variables.
Affected PHP version 5.3.9.
Remediation
Upgrade PHP to the latest version.
References
Related Vulnerabilities
WordPress Plugin YITH WooCommerce Gift Cards Premium Arbitrary File Upload (3.19.0)
WordPress Plugin Mobile Domain Multiple Vulnerabilities (1.5.2)
Microsoft SQL Server Other Vulnerability (CVE-2002-0643)
WordPress Plugin Simple Download Button Shortcode 'file' Parameter Information Disclosure (1.0)