Description

The cpdf_open function in the ClibPDF (cpdf) extension in PHP 4.4.6 allows context-dependent attackers to obtain sensitive information (script source code) via a long string in the second argument.

Remediation

References

CVE-2007-1412

Related Vulnerabilities

WordPress Plugin Video Lead Form 'errMsg' Parameter Cross-Site Scripting (0.5)

phpMyAdmin Improper Authentication Vulnerability (CVE-2018-12613)

WordPress Other Vulnerability (CVE-2007-3241)

WordPress Plugin AStickyPostOrderER Cross-Site Scripting (0.3.1)

Oracle Database Server Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-6065)

Severity

High

Classification

CVE-2007-1412

Tags

Missing Update Known Vulnerabilities