Description
Directory traversal vulnerability in PHP 5.2.4 and earlier allows attackers to bypass open_basedir restrictions and possibly execute arbitrary code via a .. (dot dot) in the dl function.
Remediation
References
Related Vulnerabilities
WordPress Plugin bbPress Like Button SQL Injection (1.5)
Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.17)
WordPress Plugin Data Tables Generator by Supsystic Cross-Site Scripting (1.10.19)
WordPress Plugin Google Map Remote Code Execution (1.0)
WordPress Plugin My Category Order Cross-Site Scripting (4.3)