Description

The FDF support (ext/fdf) in PHP 5.2.0 and earlier does not implement the input filtering hooks for ext/filter, which allows remote attackers to bypass web site filters via an application/vnd.fdf formatted POST.

Remediation

References

CVE-2007-1452

Related Vulnerabilities

PHP Other Vulnerability (CVE-2007-1835)

WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.22)

PHP Resource Management Errors Vulnerability (CVE-2006-1549)

WebLogic Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2018-1000180)

WordPress Plugin EME Sync Facebook Events Unspecified Vulnerability (1.0.38)

Severity

Medium

Classification

CVE-2007-1452

Tags

Missing Update Known Vulnerabilities