CVE-2006-3011

CVE-2006-3011 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

The error_log function in basic_functions.c in PHP before 4.4.4 and 5.x before 5.1.5 allows local users to bypass safe mode and open_basedir restrictions via a "php://" or other scheme in the third argument, which disables safe mode.

Learn more about our User Device Pen Test.