This script is Copyright (C) 2012-2014 Tenable Network Security, Inc.
The remote FreeBSD host is missing one or more security-related
php development team reports :
Security Enhancements for both PHP 5.3.11 and PHP 5.4.1 :
- Insufficient validating of upload name leading to corrupted $_FILES
- Add open_basedir checks to readline_write_history and
Security Enhancements for both PHP 5.3.11 only :
- Regression in magic_quotes_gpc fix for CVE-2012-0831.
See also :
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 6.8
CVSS Temporal Score : 5.9
Public Exploit Available : true