Description
The Apache module for PHP 4.0.0 through PHP 4.0.4, when disabled with the 'engine = off' option for a virtual host, may disable PHP for other virtual hosts, which could cause Apache to serve the source code of PHP scripts.
Remediation
References
Related Vulnerabilities
WordPress 5.7.x Multiple Vulnerabilities (5.7 - 5.7.7)
phpMyFAQ Sensitive Cookie in HTTPS Session Without 'Secure' Attribute Vulnerability (CVE-2023-5866)
WordPress Plugin Adminimize 'page' Parameter Cross-Site Scripting (1.7.21)
GeoServer Other Vulnerability (CVE-2024-23634)
WordPress Plugin Social Sharing-Sassy Social Share PHP Object Injection (3.3.23)