Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

PHP CVE-2008-2051 Vulnerability (CVE-2008-2051)

Description

The escapeshellcmd API function in PHP before 5.2.6 has unknown impact and context-dependent attack vectors related to "incomplete multibyte chars."

Remediation

References

Related Vulnerabilities

WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (2.6.2)

MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-1686)

Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37149)

PHP Server-Side Request Forgery (SSRF) Vulnerability (CVE-2017-7272)

WordPress Plugin Giveaway SQL Injection (1.2.2)

Severity

Critical

Classification

CVE-2008-2051

Tags

Missing Update Known Vulnerabilities