CVE-2007-3007

Name of the Vulnerable Software and Affected Versions: PHP versions prior to 5.2.3

Description: The issue allows context-dependent attackers to determine the existence of arbitrary files by checking if the readfile function returns a string. This might also involve the realpath function.

Recommendations: For PHP versions prior to 5.2.3, update to version 5.2.3 or later to resolve the issue. As a temporary workaround, consider restricting the use of the readfile function and the realpath function until a patch is applied.