9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.022 Low
EPSS
Percentile
89.4%
The cURL extension files (1) ext/curl/interface.c and (2)
ext/curl/streams.c in PHP before 5.1.5 permit the CURLOPT_FOLLOWLOCATION
option when open_basedir or safe_mode is enabled, which allows attackers to
perform unauthorized actions, possibly related to the realpath cache.
Author | Note |
---|---|
kees | safe-mode bypass is not supported |