7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.865 High
EPSS
Percentile
98.6%
Secunia reports:
A vulnerability has been reported in PHP, which can be exploited
by malicious people to compromise a vulnerable system.
The vulnerability is caused due to a logic error within the
โphp_register_variable_ex()โ function (php_variables.c) when
hashing form posts and updating a hash table, which can be
exploited to execute arbitrary code.