Description
PHP is prone to an issue that may allow programs to bypass Safe Mode by calling external files in restricted directories using include() and require().
Affected PHP versions (4.3, 4.3.1, 4.3.2).
Remediation
Upgrade PHP to the latest version.
References
Related Vulnerabilities
Drupal Core 4.7.x Security Bypass (4.7.0 - 4.7.7)
ZenCart Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2011-4403)
IBM RTC Exposure of Resource to Wrong Sphere Vulnerability (CVE-2020-4989)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4592)
Joomla Insufficient Verification of Data Authenticity Vulnerability (CVE-2020-15699)