The MySQL extension in PHP 5.2.4 and earlier allows remote attackers to bypass safe_mode and open_basedir restrictions via the MySQL (1) LOAD_FILE, (2) INTO DUMPFILE, and (3) INTO OUTFILE functions, a different issue than CVE-2007-3997.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2007-09-14 01:17
Updated : 2023-12-10 10:40
NVD link : CVE-2007-4889
Mitre link : CVE-2007-4889
CVE.ORG link : CVE-2007-4889
JSON object : View
Products Affected
php
- php
- mysql_extension
CWE