Description
The dl function in PHP 5.2.4 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a long string in the library parameter. NOTE: there are limited usage scenarios under which this would be a vulnerability.
Remediation
References
Related Vulnerabilities
WordPress Plugin WordPress Framework Possible Backdoor (1.0)
phpMyFAQ Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-0792)
Collabtive Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2015-0258)
MongoDb Improper Authentication Vulnerability (CVE-2014-8180)