• info
• discussion
• exploit
• solution
• references

PHP Session.Save_Path() TMPDIR Open_Basedir Restriction Bypass Vulnerability

Attackers may exploit these issues by crafting and executing standard PHP code.

The following proof of concept is available:

• /data/vulnerabilities/exploits/23183.php