PHP Safedir restriction bypass vulnerabilities

Description
  • <div class="bb-coolbox"><span class="bb-dark">This alert was generated using only banner information. It may be a false positive. </span></div><br/>PHP is prone to multiple vulnerabilities that permit an attacker to bypass the 'safedir' directory restriction. An attacker can exploit these vulnerabilities to possible execute arbitrary code currently existing on a vulnerable system, or to retrieve the contents of arbitrary files, all in the security context of the Web server process. <br/><br/><span class="bb-navy">Affected PHP version 5.5.0.</span><br/>
Remediation
  • Upgrade PHP to the latest version.
References
Severity
Classification
Tags