Description
The php_openssl_apply_verification_policy function in PHP before 5.2.11 does not properly perform certificate validation, which has unknown impact and attack vectors, probably related to an ability to spoof certificates.
Remediation
References
Related Vulnerabilities
Apache Tomcat Deserialization of Untrusted Data Vulnerability (CVE-2021-25329)
WordPress Plugin Admin Font Editor Cross-Site Scripting (1.8)
Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-2068)
MySQL CVE-2019-2785 Vulnerability (CVE-2019-2785)
WordPress Plugin Handsome Testimonials & Reviews SQL Injection (2.0.7)