[] NeoSense
E X P L O I T S
title author type platform port cve id

PHP 5.2.5 - cURL 'safe_mode' Security Bypass

Author: Maksymilian Arciemowicz
type: remote
platform: php
port: 
date_added: 2008-01-23 
date_updated: 2014-01-20 
verified: 1 
codes: CVE-2007-4850;OSVDB-43219 
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/27413/info

PHP cURL is prone to a 'safe mode' security-bypass vulnerability.

Attackers can use this issue to gain access to restricted files, potentially obtaining sensitive information that may aid in further attacks.

The issue affects PHP 5.2.5 and 5.2.4.

var_dump(curl_exec(curl_init("file://safe_mode_bypass\x00".__FILE__)));
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.