Описание
Argument injection vulnerability in the mail function for PHP 4.x to 4.2.2 may allow attackers to bypass safe mode restrictions and modify command line arguments to the MTA (e.g. sendmail) in the 5th argument to mail(), altering MTA behavior and possibly executing commands.
Ссылки
- Broken Link
- Broken Link
- Third Party Advisory
- Third Party Advisory
- Broken LinkPatchVendor Advisory
- Broken Link
- Broken Link
- Broken Link
- Broken LinkPatchVendor Advisory
- Broken Link
- Broken Link
- Broken Link
- Broken Link
- Broken Link
- Third Party AdvisoryVDB Entry
- Broken Link
- Broken Link
- Third Party Advisory
- Third Party Advisory
- Broken LinkPatchVendor Advisory
Уязвимые конфигурации
Одно из
EPSS
7.5 High
CVSS2
Дефекты
Связанные уязвимости
Argument injection vulnerability in the mail function for PHP 4.x to 4.2.2 may allow attackers to bypass safe mode restrictions and modify command line arguments to the MTA (e.g. sendmail) in the 5th argument to mail(), altering MTA behavior and possibly executing commands.
Argument injection vulnerability in the mail function for PHP 4.x to 4 ...
Argument injection vulnerability in the mail function for PHP 4.x to 4.2.2 may allow attackers to bypass safe mode restrictions and modify command line arguments to the MTA (e.g. sendmail) in the 5th argument to mail(), altering MTA behavior and possibly executing commands.
EPSS
7.5 High
CVSS2