Multiple vulnerabilies in php < 5.3.22 allow information disclosure
CVE-2013-1635
ext/soap/soap.c in PHP before 5.3.22 and 5.4.x before 5.4.13 does not
validate the relationship between the soap.wsdl_cache_dir directive
and the open_basedir directive, which allows remote attackers to bypass
intended access restrictions by triggering the creation of cached SOAP
WSDL files in an arbitrary directory.
CVE-2013-1643
The SOAP parser in PHP before 5.3.22 and 5.4.x before 5.4.13 allows
remote attackers to read arbitrary files via a SOAP WSDL file containing
an XML external entity declaration in conjunction with an entity
reference, related to an XML External Entity (XXE) issue in the
soap_xmlParseFile and soap_xmlParseMemory functions.
(from redmine: issue id 1719, created on 2013-03-25, closed on 2013-04-12)
- Relations:
- parent #1717 (closed)