Reflected XSS Vulnerability in PHP PHAR 404 Error Page

Reflected XSS Vulnerability in PHP PHAR 404 Error Page

CVE-2018-5712 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

An issue was discovered in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1. There is Reflected XSS on the PHAR 404 error page via the URI of a request for a .phar file.

Learn more about our Web Application Penetration Testing UK.