Description

This alert was generated using only banner information. It may be a false positive.

PHP is prone to an issue that may allow programs to bypass Safe Mode by calling external files in restricted directories using include() and require().

Affected PHP versions (4.3, 4.3.1, 4.3.2).

Remediation

Upgrade PHP to the latest version.

References

BID 8201

PHP homepage

Related Vulnerabilities

WordPress Plugin Contact Form by WPForms-Drag & Drop Form Builder for WordPress Cross-Site Scripting (1.5.8.2)

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-2244)

WordPress Plugin Email Log Cross-Site Scripting (2.2.2)

Sqlite CVE-2021-20223 Vulnerability (CVE-2021-20223)

DWR Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-5325)

Severity

Medium

Classification

CVE-2003-0863 CWE-829 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Tags

Missing Update