Description
PHP 4.0 with cURL functions allows remote attackers to bypass the open_basedir setting and read arbitrary files via a file: URL argument to the curl_init function.
Remediation
References
Related Vulnerabilities
Apache Tomcat URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2018-11784)
WordPress Plugin Import Social Events Cross-Site Scripting (1.6.6)
MySQL CVE-2019-2627 Vulnerability (CVE-2019-2627)
Nginx Use After Free Vulnerability (CVE-2022-32414)
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2021-33324)