Description
This alert was generated using only banner information. It may be a false positive.
PHP is prone to multiple vulnerabilities that permit an attacker to bypass the 'safedir' directory restriction. An attacker can exploit these vulnerabilities to possible execute arbitrary code currently existing on a vulnerable system, or to retrieve the contents of arbitrary files, all in the security context of the Web server process.
Affected PHP version 5.5.0.
Remediation
Upgrade PHP to the latest version.
References
Related Vulnerabilities
LiteSpeed Web Server Out-of-bounds Read Vulnerability (CVE-2004-0112)
WordPress Plugin LOGOSWARE SUITE Uploader Arbitrary File Upload (1.1.6)
WebLogic CVE-2016-3586 Vulnerability (CVE-2016-3586)
WordPress Plugin Embed Articles Multiple Vulnerabilities (7.0.3)
WordPress Plugin All in One Webmaster Cross-Site Request Forgery (8.2.3)