Description
Multiple buffer overflows in libtidy, as used in the Tidy extension for PHP 5.2.3 and possibly other products, allow context-dependent attackers to execute arbitrary code via (1) a long second argument to the tidy_parse_string function or (2) an unspecified vector to the tidy_repair_string function. NOTE: this might only be an issue in environments where vsnprintf is implemented as a wrapper for vsprintf.
Remediation
References
Related Vulnerabilities
WordPress Plugin FunCaptcha-Anti-Spam CAPTCHA Cross-Site Request Forgery (0.3.2)
WordPress 4.6.x Prototype Pollution (4.6 - 4.6.22)
Oracle JRE CVE-2023-21835 Vulnerability (CVE-2023-21835)
MODX Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2017-7321)
phpMyFAQ Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3783)