Description

In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before 8.3.12, HTTP_REDIRECT_STATUS variable is used to check whether or not CGI binary is being run by the HTTP server. However, in certain scenarios, the content of this variable can be controlled by the request submitter via HTTP headers, which can lead to cgi.force_redirect option not being correctly applied. In certain configurations this may lead to arbitrary file inclusion in PHP.

Remediation

References

CVE-2024-8927

Related Vulnerabilities

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4396)

WordPress Plugin CMS Tree Page View Multiple Vulnerabilities (1.4)

WordPress Plugin Downloads Manager 'upload.php' Arbitrary File Upload (0.2)

MySQL Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2005-0709)

WordPress Plugin WordPress WP-Advanced-Search SQL Injection (3.3.5)

Severity

High

Classification

CVE-2024-8927 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities