PHP Session Data Deserialization Arbitrary Code Execution Vulnerability

PHP Session Data Deserialization Arbitrary Code Execution Vulnerability

PHP is prone to an arbitrary-code-execution vulnerability.

An attacker may exploit this issue to execute arbitrary code within the context of the affected webserver.

This issue affects PHP 4 versions prior to 4.4.5 and PHP 5 versions prior to 5.2.1.