Description
The Zend Engine in PHP 4.x before 4.4.7, and 5.x before 5.2.2, allows remote attackers to cause a denial of service (stack exhaustion and PHP crash) via deeply nested arrays, which trigger deep recursion in the variable destruction routines.
Remediation
References
Related Vulnerabilities
WordPress Plugin IgniteUp-Coming Soon and Maintenance Mode Multiple Vulnerabilities (3.4)
Liferay DXP Missing Authorization Vulnerability (CVE-2022-39975)
WordPress Plugin WordPress File Upload Cross-Site Scripting (4.3.2)
CakePHP Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-15400)
WordPress Plugin Facebook Members Cross-Site Scripting (7.0)