Description

The cpdf_open function in the ClibPDF (cpdf) extension in PHP 4.4.6 allows context-dependent attackers to obtain sensitive information (script source code) via a long string in the second argument.

Remediation

References

CVE-2007-1412

Related Vulnerabilities

WordPress Plugin Reusable Blocks Extended Cross-Site Request Forgery (0.9)

Oracle JRE CVE-2014-0432 Vulnerability (CVE-2014-0432)

WordPress Plugin User Domain Whitelist Multiple Vulnerabilities (1.4)

WordPress Plugin FlightLog SQL Injection (3.0.2)

WordPress Plugin DMSGuestbook File Manipulation (1.17.4)

Severity

High

Classification

CVE-2007-1412

Tags

Missing Update Known Vulnerabilities