Description

The zip:// URL wrapper provided by the PECL zip extension in PHP before 4.4.7, and 5.2.0 and 5.2.1, does not implement safemode or open_basedir checks, which allows remote attackers to read ZIP archives located outside of the intended directories.

Remediation

References

CVE-2007-1460

Related Vulnerabilities

WordPress Plugin FireStats Arbitrary File Download (1.6.5)

MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-2922)

Oracle Database Server CVE-2018-2875 Vulnerability (CVE-2018-2875)

Joomla! Core 3.x.x Cross-Site Scripting (3.0.0 - 3.9.25)

Python Numeric Errors Vulnerability (CVE-2008-5031)

Severity

Medium

Classification

CVE-2007-1460 CWE-264

Tags

Missing Update Known Vulnerabilities