CVE-2007-1460
MEDIUM
5.0
CVSS Severity Score
Vulnerability Description
The zip:// URL wrapper provided by the PECL zip extension in PHP before 4.4.7, and 5.2.0 and 5.2.1, does not implement safemode or open_basedir checks, which allows remote attackers to read ZIP archives located outside of the intended directories.
Affected Platforms (CPE)
π¦
Php
Php
<= 4.4.6π¦
Php
Php
= 1.0π¦
Php
Php
= 2.0π¦
Php
Php
= 2.0b10π¦
Php
Php
= 3.0π¦
Php
Php
= 3.0.1π¦
Php
Php
= 3.0.2π¦
Php
Php
= 3.0.3π¦
Php
Php
= 3.0.4π¦
Php
Php
= 3.0.5π¦
Php
Php
= 3.0.6π¦
Php
Php
= 3.0.7π¦
Php
Php
= 3.0.8π¦
Php
Php
= 3.0.9π¦
Php
Php
= 3.0.10π¦
Php
Php
= 3.0.11π¦
Php
Php
= 3.0.12π¦
Php
Php
= 3.0.13π¦
Php
Php
= 3.0.14π¦
Php
Php
= 3.0.15π¦
Php
Php
= 3.0.16π¦
Php
Php
= 3.0.17π¦
Php
Php
= 3.0.18π¦
Php
Php
= 4.0π¦
Php
Php
= 4.0π¦
Php
Php
= 4.0π¦
Php
Php
= 4.0π¦
Php
Php
= 4.0π¦
Php
Php
= 4.0.0π¦
Php
Php
= 4.0.1π¦
Php
Php
= 4.0.2π¦
Php
Php
= 4.0.3π¦
Php
Php
= 4.0.4π¦
Php
Php
= 4.0.5π¦
Php
Php
= 4.0.6π¦
Php
Php
= 4.0.7π¦
Php
Php
= 4.1.0π¦
Php
Php
= 4.1.1π¦
Php
Php
= 4.1.2π¦
Php
Php
= 4.2.0π¦
Php
Php
= 4.2.1π¦
Php
Php
= 4.2.2π¦
Php
Php
= 4.2.3π¦
Php
Php
= 4.3.0π¦
Php
Php
= 4.3.1π¦
Php
Php
= 4.3.2π¦
Php
Php
= 4.3.3π¦
Php
Php
= 4.3.4π¦
Php
Php
= 4.3.5π¦
Php
Php
= 4.3.6π¦
Php
Php
= 4.3.7π¦
Php
Php
= 4.3.8π¦
Php
Php
= 4.3.9π¦
Php
Php
= 4.3.10π¦
Php
Php
= 4.3.11π¦
Php
Php
= 4.4.0π¦
Php
Php
= 4.4.1π¦
Php
Php
= 4.4.2π¦
Php
Php
= 4.4.3π¦
Php
Php
= 4.4.4π¦
Php
Php
= 4.4.5π¦
Php
Php
= 5.2.0π¦
Php