Description
The i_zval_ptr_dtor function in Zend/zend_variables.h in PHP 7.1.5 allows attackers to cause a denial of service (memory consumption and application crash) or possibly have unspecified other impact by triggering crafted operations on array data structures.
Remediation
References
Related Vulnerabilities
MediaWiki Incorrect Authorization Vulnerability (CVE-2020-26121)
Apache Tomcat Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-12617)
WordPress Improper Input Validation Vulnerability (CVE-2018-1000773)
WordPress Plugin Restricted Site Access Security Bypass (7.3.1)
WordPress Plugin WP Server Health Stats Malicious Code (1.7.6)