PHP 5.3.12 and 5.4.2 and the CGI flaw (CVE-2012-1823)
0
PHP 5.3.12/5.4.2 do not fix all variations of the CGI issues described
in CVE-2012-1823. It has also come to our attention that some sites use
an insecure cgiwrapper script to run PHP. These scripts will use $*
instead of "$@…
PHP 5.3.12 and PHP 5.4.2 Released!
There is a vulnerability in certain CGI-based setups (Apache+mod_php and nginx+php-fpm are not affected)
that has gone unnoticed for at least 8 years. Section
7 of the CGI spec states:
Some systems support…
MoreWordPress 3.4 Beta 4
Less bugs, more polish, the same beta disclaimers. Download, test, report bugs. Thanks much. /ryan #thewholebrevitything
More