Computer Security
[EN] securityvulns.ru no-pyccku


PHP safemode bypass
Published:11.09.2007
Source:
SecurityVulns ID:8134
Type:local
Threat Level:
5/10
Description:By using LOAD_FILE, INTO DUMPFILE, INTO OUTFILE SQL modifiers it's possible to access files behind basedir.
Affected:PHP : PHP 5.2
Original documentdocumentlaurent gaffie, PHP <=5.2.4 open_basedir bypass & code exec & denial of service (11.09.2007)
 documentlaurent gaffie, PHP 5.2.4 <= various mysql functions safemode & open_basedir bypass (11.09.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod