Description
Integer overflow in the str_replace function in PHP 4.4.5 and PHP 5.2.1 allows context-dependent attackers to have an unknown impact via a single character search string in conjunction with a single character replacement string, which causes an "off by one overflow."
Remediation
References
Related Vulnerabilities
WordPress Plugin 1 Flash Gallery Cross-Site Scripting and SQL Injection Vulnerabilities (0.2.5)
WordPress Plugin 1-click Retweet/Share/Like Cross-Site Scripting (5.2)
Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2017-12174)
WordPress Plugin WP Responsive Testimonials Slider And Widget Cross-Site Scripting (1.5)