Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
curl/interface.c in the cURL library (aka libcurl) in PHP 5.2.4 and 5.2.5 allows context-dependent attackers to bypass safe_mode and open_basedir restrictions and read arbitrary files via a file:// request containing a \x00 sequence, a different vulnerability than CVE-2006-2563.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PHP cURL library 'curl/interface.c'安全设置绕过漏洞
Vulnerability Description
PHP 5.2.4和5.2.5中cURL库(又名libcurl)的curl/interface.c文件存在安全设置绕过漏洞,远程攻击者可以通过一个文件file:// request包含\ x00序列绕过文件的safe_mode和open_basedir限制,读取任意文件。 不同于CVE-2006-2563漏洞。
CVSS Information
N/A
Vulnerability Type
N/A