Description
Use-after-free vulnerability in the CURLFile implementation in ext/curl/curl_file.c in PHP before 5.6.27 and 7.x before 7.0.12 allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted serialized data that is mishandled during __wakeup processing.
Remediation
References
Related Vulnerabilities
WordPress Plugin YITH WooCommerce PDF Invoice and Shipping List Security Bypass (1.2.12)
MySQL CVE-2013-3810 Vulnerability (CVE-2013-3810)
WordPress Plugin Download Zip Attachments Arbitrary File Download (1.0.0)
MySQL CVE-2013-2378 Vulnerability (CVE-2013-2378)
WordPress Plugin LOGIN AND REGISTRATION ATTEMPTS LIMIT Cross-Site Request Forgery (2.1)