WEB APPLICATION VULNERABILITIES Standard & Premium

PHP Improper Input Validation Vulnerability (CVE-2007-4887)

Description

The dl function in PHP 5.2.4 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a long string in the library parameter. NOTE: there are limited usage scenarios under which this would be a vulnerability.

Remediation

References

Related Vulnerabilities

WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner SQL Injection (4.2.161)

MySQL CVE-2019-2911 Vulnerability (CVE-2019-2911)

WordPress Plugin Simple Business Directory with Maps PHP Object Injection (3.6.0)

Oracle JRE CVE-2012-5072 Vulnerability (CVE-2012-5072)

Oracle Database Server Other Vulnerability (CVE-2006-7141)

Severity

Medium

Classification

CVE-2007-4887 CWE-20

Tags

Missing Update Known Vulnerabilities