CVE-2007-1461
HIGH
7.8
CVSS Severity Score
Vulnerability Description
The compress.bzip2:// URL wrapper provided by the bz2 extension in PHP before 4.4.7, and 5.x before 5.2.2, does not implement safemode or open_basedir checks, which allows remote attackers to read bzip2 archives located outside of the intended directories.
Affected Platforms (CPE)
π¦
Php
Php
= 5.0.0π¦
Php
Php
= 5.0.1π¦
Php
Php
= 5.0.2π¦
Php
Php
= 5.0.3π¦
Php
Php
= 5.0.4π¦
Php
Php
= 5.0.5π¦
Php
Php
= 5.1.0π¦
Php
Php
= 5.1.1π¦
Php
Php
= 5.1.2π¦
Php
Php
= 5.1.3π¦
Php
Php
= 5.1.4π¦
Php
Php
= 5.1.5π¦
Php
Php
= 5.1.6π¦
Php
Php
= 5.2.0π¦
Php
Php
= 5.2.1π¦
Php
Php
<= 4.4.6π¦
Php
Php
= 1.0π¦
Php
Php
= 2.0π¦
Php
Php
= 2.0b10π¦
Php
Php
= 3.0π¦
Php
Php
= 3.0.1π¦
Php
Php
= 3.0.2π¦
Php
Php
= 3.0.3π¦
Php
Php
= 3.0.4π¦
Php
Php
= 3.0.5π¦
Php
Php
= 3.0.6π¦
Php
Php
= 3.0.7π¦
Php
Php
= 3.0.8π¦
Php
Php
= 3.0.9π¦
Php
Php
= 3.0.10π¦
Php
Php
= 3.0.11π¦
Php
Php
= 3.0.12π¦
Php
Php
= 3.0.13π¦
Php
Php
= 3.0.14π¦
Php
Php
= 3.0.15π¦
Php
Php
= 3.0.16π¦
Php
Php
= 3.0.17π¦
Php
Php
= 3.0.18π¦
Php
Php
= 4.0π¦
Php
Php
= 4.0π¦
Php
Php
= 4.0π¦
Php
Php
= 4.0π¦
Php
Php
= 4.0π¦
Php
Php
= 4.0.0π¦
Php
Php
= 4.0.1π¦
Php
Php
= 4.0.2π¦
Php
Php
= 4.0.3π¦
Php
Php
= 4.0.4π¦
Php
Php
= 4.0.5π¦
Php
Php
= 4.0.6π¦
Php
Php
= 4.0.7π¦
Php
Php
= 4.1.0π¦
Php
Php
= 4.1.1π¦
Php
Php
= 4.1.2π¦
Php
Php
= 4.2.0π¦
Php
Php
= 4.2.1π¦
Php
Php
= 4.2.2π¦
Php
Php
= 4.2.3π¦
Php
Php
= 4.3.0π¦
Php
Php
= 4.3.1π¦
Php
Php
= 4.3.2π¦
Php
Php
= 4.3.3π¦
Php
Php
= 4.3.4π¦
Php
Php
= 4.3.5π¦
Php
Php
= 4.3.6π¦
Php
Php
= 4.3.7π¦
Php
Php
= 4.3.8π¦
Php
Php
= 4.3.9π¦
Php
Php
= 4.3.10π¦
Php
Php
= 4.3.11π¦
Php
Php
= 4.4.0π¦
Php
Php
= 4.4.1π¦
Php
Php
= 4.4.2π¦
Php
Php
= 4.4.3π¦
Php
Php
= 4.4.4π¦
Php