CVE-2006-7204
Summary
The imap_body function in PHP before 4.4.4 does not implement safemode or open_basedir checks, which allows local users to read arbitrary files or list arbitrary directory contents.
- LOW
- LOCAL
- NONE
- NONE
- PARTIAL
- NONE
References
Advisory Timeline
- Published