The vulnerability of the proc_open() function in the PHP interpreter allows attackers to execute arbitrary commands.

The vulnerability of the procopen function in the PHP programming language exists because measures to neutralize the special elements used in operating system commands have not been taken. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

PHP proc_open() safe_mode bypass

It's possible to execute any code from shared library via procopen...