Description
The resource system in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allows context-dependent attackers to execute arbitrary code by interrupting certain functions in the GD (ext/gd) extension and unspecified other extensions via a userspace error handler, which can be used to destroy and modify internal resources.
Remediation
References
Related Vulnerabilities
WordPress Plugin Falang multilanguage for WordPress Cross-Site Scripting (1.3.17)
WordPress Plugin Influencer Marketing & Press Release System Cross-Site Scripting (2.2)
WordPress 4.1.x Multiple Vulnerabilities (4.1 - 4.1.29)
WordPress Plugin Garee's Flickr Feed Multiple Cross-Site Scripting Vulnerabilities (0.8)
Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7864)