CVE-2012-1823

⚠ KEVEPSS 94.4%

PHP-CGI Query String Parameter Vulnerability

Added to CISA KEV: 3/25/2022

Description

sapi/cgi/cgi_main.c in PHP, when configured as a CGI script, does not properly handle query strings, which allows remote attackers to execute arbitrary code.

Affected packages (0)

No package mapping in OSV.