Description
The libxml RSHUTDOWN function in PHP 5.x allows remote attackers to bypass the open_basedir protection mechanism and read arbitrary files via vectors involving a stream_close method call during use of a custom stream wrapper.
Remediation
References
Related Vulnerabilities
MySQL CVE-2019-2535 Vulnerability (CVE-2019-2535)
WordPress Plugin WP Mass Mail Open Email Relay (2.45)
Artifactory Insufficiently Protected Credentials Vulnerability (CVE-2020-2165)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2079)
WordPress Plugin Database Backup for WordPress Cross-Site Scripting (2.3.3)