Description

The zip:// URL wrapper provided by the PECL zip extension in PHP before 4.4.7, and 5.2.0 and 5.2.1, does not implement safemode or open_basedir checks, which allows remote attackers to read ZIP archives located outside of the intended directories.

Remediation

References

CVE-2007-1460

Related Vulnerabilities

WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-0682)

Joomla! Core 3.x.x Security Bypass (3.2.0 - 3.4.4)

WordPress Plugin iThemes Security (formerly Better WP Security) Security Bypass (5.3.5)

phpList Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-2916)

Ruby on Rails Missing Encryption of Sensitive Data Vulnerability (CVE-2010-3299)

Severity

Medium

Classification

CVE-2007-1460 CWE-264

Tags

Missing Update Known Vulnerabilities