Summary
PHP is prone to multiple security vulnerabilities.
An attacker can exploit these issues to execute arbitrary code, crash the affected application, gain access to sensitive information and bypass security restrictions. Other attacks are also possible.
These issues affect the following:
PHP 5.3 (Prior to 5.3.3) PHP 5.2 (Prior to 5.2.14)
Solution
Updates are available. Please see the references for more information.
References
Severity
Classification
-
CVE CVE-2010-2484, CVE-2010-2531 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Adobe ColdFusion Multiple Vulnerabilities-03 May-2014
- aeNovo Database Content Disclosure Vulnerability
- A4Desk Event Calendar 'eventid' Parameter SQL Injection Vulnerability
- Adobe ColdFusion Multiple Cross Site Scripting Vulnerabilities
- Apache Tomcat Cross-Site Scripting and Security Bypass Vulnerabilities