CVE-2007-4658

CVE-2007-4658 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The money_format function in PHP 5 before 5.2.4, and PHP 4 before 4.4.8, permits multiple (1) %i and (2) %n tokens, which has unknown impact and attack vectors, possibly related to a format string vulnerability.

Learn more about our Web Application Penetration Testing UK.