N/A

PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 does not ensure that pathnames lack %00 sequences, which might allow remote attackers to read or write to arbitrary files via crafted input to an application that calls (1) a DOMDocument load method, (2) the xmlwriter_open_uri function, (3) the finfo_file function, or (4) the hash_hmac_file function, as demonstrated by a filename\0.xml attack that bypasses an intended configuration in which client users may read only .xml files.

N/A

N/A

PHP 安全绕过漏洞

PHP（PHP：Hypertext Preprocessor，PHP：超文本预处理器）是PHP Group和开放源代码社区共同维护的一种开源的通用计算机脚本语言。该语言主要用于Web开发，支持多种数据库及操作系统。 PHP中存在安全漏洞，该漏洞源于程序没有确保路径名中不包含‘%00’字符。远程攻击者可借助调用多个函数（DOMDocument加载方法，xmlwriter_open_uri函数，finfo_file函数，hash_hmac_file函数）的应用程序的特制输入利用该漏洞读取或写入任意文件。以下版

N/A

N/A