7.1 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
24.8%
PHP before 5.2.5 allows local users to bypass protection mechanisms configured through php_admin_value or php_admin_flag in httpd.conf by using ini_set to modify arbitrary configuration variables, a different issue than CVE-2006-4625.
nvd.nist.gov/vuln/detail/CVE-2007-5900
www.cve.org/CVERecord?id=CVE-2007-5900