CVE-2011-2202

🗓️ 16 Jun 2011 23:55:04Reported by [email protected]Type

The rfc1867_post_handler function in PHP before 5.3.7 allows absolute path traversal attacks via crafted upload reques

Reporter	Title	Published	Views	Family All 149
FreeBSD	php -- multiple vulnerabilities	18 Aug 201100:00	–	freebsd
Tenable Nessus	PHP 5.3.x < 5.3.7 Multiple Vulnerabilities	23 Aug 201100:00	–	nessus
Tenable Nessus	Mac OS X 10.7 < 10.7.3 Multiple Vulnerabilities	6 Feb 201200:00	–	nessus
Tenable Nessus	PHP 5.3 < 5.3.7 Multiple Vulnerabilities	23 Aug 201100:00	–	nessus
Tenable Nessus	Amazon Linux AMI : php (ALAS-2011-07)	4 Sep 201300:00	–	nessus
Tenable Nessus	Amazon Linux AMI : php (ALAS-2011-7)	12 Oct 201400:00	–	nessus
Tenable Nessus	CentOS 5 : php53 (CESA-2011:1423)	3 Nov 201100:00	–	nessus
Tenable Nessus	CentOS 5 : php (CESA-2012:0033)	24 Jan 201200:00	–	nessus
Tenable Nessus	CentOS 4 : php (CESA-2012:0071)	29 Jun 201300:00	–	nessus
Tenable Nessus	Debian DSA-2266-1 : php5 - several vulnerabilities	5 Jul 201100:00	–	nessus

NVD

Node

php phpRange≤5.3.6

php phpMatch1.0

php phpMatch2.0

php phpMatch2.0b10

php phpMatch3.0

php phpMatch3.0.1

php phpMatch3.0.2

php phpMatch3.0.3

php phpMatch3.0.4

php phpMatch3.0.5

php phpMatch3.0.6

php phpMatch3.0.7

php phpMatch3.0.8

php phpMatch3.0.9

php phpMatch3.0.10

php phpMatch3.0.11

php phpMatch3.0.12

php phpMatch3.0.13

php phpMatch3.0.14

php phpMatch3.0.15

php phpMatch3.0.16

php phpMatch3.0.17

php phpMatch3.0.18

php phpMatch4.0

php phpMatch4.0beta_4_patch1

php phpMatch4.0beta1

php phpMatch4.0beta2

php phpMatch4.0beta3

php phpMatch4.0beta4

php phpMatch4.0.0

php phpMatch4.0.1

php phpMatch4.0.2

php phpMatch4.0.3

php phpMatch4.0.4

php phpMatch4.0.5

php phpMatch4.0.6

php phpMatch4.0.7

php phpMatch4.1.0

php phpMatch4.1.1

php phpMatch4.1.2

php phpMatch4.2.0

php phpMatch4.2.1

php phpMatch4.2.2

php phpMatch4.2.3

php phpMatch4.3.0

php phpMatch4.3.1

php phpMatch4.3.2

php phpMatch4.3.3

php phpMatch4.3.4

php phpMatch4.3.5

php phpMatch4.3.6

php phpMatch4.3.7

php phpMatch4.3.8

php phpMatch4.3.9

php phpMatch4.3.10

php phpMatch4.3.11

php phpMatch4.4.0

php phpMatch4.4.1

php phpMatch4.4.2

php phpMatch4.4.3

php phpMatch4.4.4

php phpMatch4.4.5

php phpMatch4.4.6

php phpMatch4.4.7

php phpMatch4.4.8

php phpMatch4.4.9

php phpMatch5.3.0

php phpMatch5.3.1

php phpMatch5.3.2

php phpMatch5.3.3

php phpMatch5.3.4

php phpMatch5.3.5

Source	Link
svn	www.svn.php.net/viewvc/php/php-src/branches/PHP_5_3/main/rfc1867.c
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/67999
openwall	www.openwall.com/lists/oss-security/2011/06/13/15
support	www.support.apple.com/kb/HT5130
debian	www.debian.org/security/2011/dsa-2266
openwall	www.openwall.com/lists/oss-security/2011/06/12/5
svn	www.svn.php.net/viewvc
pastebin	www.pastebin.com/1edSuSVN
securityfocus	www.securityfocus.com/bid/49241
secunia	www.secunia.com/advisories/44874

29 Apr 2026 01:13Current

7.4High risk

Vulners AI Score7.4

CVSS 26.4

EPSS0.11671

CWE-264