Описание
PHP 4.0.5 through 4.1.0 in safe mode does not properly cleanse the 5th parameter to the mail() function, which allows local users and possibly remote attackers to execute arbitrary commands via shell metacharacters.
Дополнительная информация
Статус:
Important
https://bugzilla.redhat.com/show_bug.cgi?id=1616654security flaw
EPSS
Процентиль: 90%
0.05407
Низкий
Связанные уязвимости
nvd
больше 24 лет назад
PHP 4.0.5 through 4.1.0 in safe mode does not properly cleanse the 5th parameter to the mail() function, which allows local users and possibly remote attackers to execute arbitrary commands via shell metacharacters.
github
больше 3 лет назад
PHP 4.0.5 through 4.1.0 in safe mode does not properly cleanse the 5th parameter to the mail() function, which allows local users and possibly remote attackers to execute arbitrary commands via shell metacharacters.
EPSS
Процентиль: 90%
0.05407
Низкий