7.5

CVE-2008-5844

Exploit
PHP 5.2.7 contains an incorrect change to the FILTER_UNSAFE_RAW functionality, and unintentionally disables magic_quotes_gpc regardless of the actual magic_quotes_gpc setting, which might make it easier for context-dependent attackers to conduct SQL injection attacks and unspecified other attacks.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
PhpPhp Version5.2.7
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.66% 0.737
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://bugs.php.net/bug.php?id=42718
Exploit
http://bugs.php.net/bug.php?id=46759
http://www.php.net/ChangeLog-5.php#5.2.8
http://www.php.net/archive/2008.php#id2008-12-07-1
http://www.php.net/archive/2008.php#id2008-12-08-1
http://www.securityfocus.com/bid/32673
http://www.securitytracker.com/id?1021393