Vulnerability Database

290,206

Total vulnerabilities in the database

CVE-2009-0754

PHP 4.4.4, 5.1.6, and other versions, when running on Apache, allows local users to modify behavior of other sites hosted on the same web server by modifying the mbstring.func_overload setting within .htaccess, which causes this setting to be applied to other virtual hosts on the same server.

  • Published: Mar 3, 2009
  • Updated: Apr 13, 2023
  • CVE: CVE-2009-0754
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 2.1
  • AV:L/AC:L/Au:N/C:N/I:P/A:N

CWEs:

Software From Fixed in
php / php 4.4.4 4.4.4.x
php / php 5.1.6 5.1.6.x