exploitDog

CVE-2003-0863

Опубликовано: 17 нояб. 2003

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

The php_check_safe_mode_include_dir function in fopen_wrappers.c of PHP 4.3.x returns a success value (0) when the safe_mode_include_dir variable is not specified in configuration, which differs from the previous failure value and may allow remote attackers to exploit file include vulnerabilities in PHP applications.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:php:php:4.3.0:*:*:*:*:*:*:*

cpe:2.3:a:php:php:4.3.1:*:*:*:*:*:*:*

cpe:2.3:a:php:php:4.3.2:*:*:*:*:*:*:*

EPSS

Процентиль: 86%

0.02992

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2003-0863

debian

больше 21 года назад

The php_check_safe_mode_include_dir function in fopen_wrappers.c of PH ...

GHSA-m77h-43fp-5x4g

github

около 3 лет назад

The php_check_safe_mode_include_dir function in fopen_wrappers.c of PHP 4.3.x returns a success value (0) when the safe_mode_include_dir variable is not specified in configuration, which differs from the previous failure value and may allow remote attackers to exploit file include vulnerabilities in PHP applications.

EPSS

Процентиль: 86%

0.02992

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other