Php · Php-Proxima · CVE-2003-0294
Name of the Vulnerable Software and Affected Versions:
php-proxima versions 6.0 and earlier
Description:
The issue allows remote attackers to read arbitrary files via the `name` parameter in a modload operation. This is related to the autohtml.php file.
Recommendations:
For php-proxima versions 6.0 and earlier, consider restricting access to the autohtml.php file and the modload operation to minimize the risk of exploitation. As a temporary workaround, avoid using the `name` parameter in the modload operation until a patch is available.