Description
The readfile function in PHP 4.4.4, 5.1.6, and 5.2.1 allows context-dependent attackers to bypass safe_mode restrictions and read arbitrary files by referring to local files with a certain URL syntax instead of a pathname syntax, as demonstrated by a filename preceded a "php://../../" sequence.
Remediation
References
Related Vulnerabilities
WordPress Plugin Preview E-mails for WooCommerce Cross-Site Scripting (1.6.8)
Liferay Portal Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2022-42129)
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-14885)
Oracle Database Server CVE-2014-2406 Vulnerability (CVE-2014-2406)
WebLogic Improper Access Control Vulnerability (CVE-2019-2729)