Lucene search

K
cvelistRedhatCVELIST:CVE-2012-0831
HistoryFeb 10, 2012 - 8:00 p.m.

CVE-2012-0831

2012-02-1020:00:00
redhat
www.cve.org
1

7.2 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

79.1%

PHP before 5.3.10 does not properly perform a temporary change to the magic_quotes_gpc directive during the importing of environment variables, which makes it easier for remote attackers to conduct SQL injection attacks via a crafted request, related to main/php_variables.c, sapi/cgi/cgi_main.c, and sapi/fpm/fpm/fpm_main.c.