logo
DATABASE RESOURCES PRICING ABOUT US

PHP 7.4.x < 7.4.26 Local File Inclusion

Description

According to its self-reported version number, the version of PHP running on the remote web server is 7.3.x prior to 7.3.33, 7.4.x prior to 7.4.26 or 8.0.x prior to 8.0.13. It is, therefore, affected by a local file inclusion vulnerability due to NULL byte special character breaking the path in xml function. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number.


Related