Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
PHP Improper Input Validation Vulnerability - CVE-2010-1129 - Vulnerability Database
PHP

PHP Improper Input Validation Vulnerability - CVE-2010-1129

High
Reference: CVE-2010-1129
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2010-1129
Title: PHP Improper Input Validation Vulnerability
Overview:

The safe_mode implementation in PHP before 5.2.13 does not properly handle directory pathnames that lack a trailing / (slash) character which allows context-dependent attackers to bypass intended access restrictions via vectors related to use of the tempnam function.