Description
The substr_count function in PHP 5.2.1 and earlier allows context-dependent attackers to obtain sensitive information via unspecified vectors, a different affected function than CVE-2007-1375.
Remediation
References
Related Vulnerabilities
PHP Uncontrolled Resource Consumption Vulnerability (CVE-2011-3336)
WordPress Plugin Nextend Twitter Connect Cross-Site Scripting (1.5.1)
WordPress Plugin WP Hotel Booking SQL Injection (2.1.0)
WordPress Plugin Asgaros Forum Security Bypass (1.5.7)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1044)