Description
PHP before 5.2.5 allows local users to bypass protection mechanisms configured through php_admin_value or php_admin_flag in httpd.conf by using ini_set to modify arbitrary configuration variables, a different issue than CVE-2006-4625.
Remediation
References
Related Vulnerabilities
Internet Information Services Other Vulnerability (CVE-1999-0739)
WordPress Plugin FormBuilder Multiple Vulnerabilities (1.05)
WordPress Plugin IMPress for IDX Broker Cross-Site Scripting (3.0.5)
WordPress Plugin ByREV WP-PICShield Cross-Site Request Forgery (1.9.7)
WordPress Plugin Media Tagz Gallery Multiple Unspecified Vulnerabilities (1.0)