Description
Use-after-free vulnerability in ext/spl/spl_dllist.c in the SPL component in PHP through 5.5.14 allows context-dependent attackers to cause a denial of service or possibly have unspecified other impact via crafted iterator usage within applications in certain web-hosting environments.
Remediation
References
Related Vulnerabilities
WordPress Plugin Nextend Facebook Connect Cross-Site Scripting (1.5.5)
Artifactory Incorrect Default Permissions Vulnerability (CVE-2021-46270)
Joomla! Core 2.5.x Information Disclosure (2.5.0 - 2.5.3)
WordPress Plugin Contact Form 7-Clockwork SMS Cross-Site Scripting (2.3.0)
WordPress Plugin WordPress Email Template Designer-WP HTML Mail Cross-Site Request Forgery (3.0.6)