Description
PHP before 5.3.9 has improper libxslt security settings, which allows remote attackers to create arbitrary files via a crafted XSLT stylesheet that uses the libxslt output extension.
Remediation
References
Related Vulnerabilities
WordPress Plugin Relevanssi Premium-A Better Search Cross-Site Scripting (1.14.8)
WordPress Plugin Disable Image Right Click Cross-Site Scripting (1.0)
Oracle Database Server CVE-2008-1821 Vulnerability (CVE-2008-1821)
WordPress Plugin StreamCast-Radio Player for WordPress Cross-Site Scripting (2.1)