Description
PHP 4.x and 5.x before 5.2.1, when running on multi-threaded systems, does not ensure thread safety for libc crypt function calls using protection schemes such as a mutex, which creates race conditions that allow remote attackers to overwrite internal program memory and gain system access.
Remediation
References
Related Vulnerabilities
WordPress URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2018-10101)
WordPress Plugin Happy Addons for Elementor Cross-Site Scripting (2.23.0)
WordPress 3.8.x Multiple Vulnerabilities (3.8 - 3.8.30)
WordPress Plugin Widgets for WooCommerce Products on Elementor Security Bypass (1.0.5)