Description

The (1) file_exists and (2) imap_reopen functions in PHP before 5.1.5 do not check for the safe_mode and open_basedir settings, which allows local users to bypass the settings. NOTE: the error_log function is covered by CVE-2006-3011, and the imap_open function is covered by CVE-2006-1017.

Remediation

References

CVE-2006-4481

Related Vulnerabilities

LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-1000658)

PHP Improper Input Validation Vulnerability (CVE-2015-4604)

Grafana CVE-2022-39201 Vulnerability (CVE-2022-39201)

WordPress Plugin User Profile Builder-Beautiful User Registration Forms, User Profiles & User Role Editor Security Bypass (3.4.8)

WordPress Plugin Arigato Autoresponder and Newsletter Remote Code Execution (2.5.1.9)

Severity

High

Classification

CVE-2006-4481

Tags

Missing Update Known Vulnerabilities