Description
Multiple directory traversal vulnerabilities in PHP 5.2.6 and earlier allow context-dependent attackers to bypass safe_mode restrictions by creating a subdirectory named http: and then placing ../ (dot dot slash) sequences in an http URL argument to the (1) chdir or (2) ftok function.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Support Plus Responsive Ticket System Multiple Vulnerabilities (4.1)
MySQL Other Vulnerability (CVE-2002-1923)
WordPress Plugin Wise Agent Lead Capture Forms Cross-Site Scripting (1.0)
Oracle JRE CVE-2013-2407 Vulnerability (CVE-2013-2407)
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-6624)