Description
The disable_functions feature in PHP 4 and 5 allows attackers to bypass intended restrictions by using an alias, as demonstrated by using ini_alter when ini_set is disabled.
Remediation
References
Related Vulnerabilities
WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Request Forgery (2.6.1)
Perl Resource Management Errors Vulnerability (CVE-2013-1667)
Serendipity Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2011-1134)
Ruby Resource Management Errors Vulnerability (CVE-2008-4310)