PHP File Upload Capability Hidden Form Field Modification Arbitrary File Access
Medium Nessus Plugin ID 10513
SynopsisArbitrary files may be read on the remote host.
DescriptionA version of PHP that is older than 3.0.17 or 4.0.3 is running on this host.
If a PHP service that allows users to upload files and then display their content is running on this host, an attacker may be able to read arbitrary files from the server.
SolutionUpgrade to PHP 3.0.17 or 4.0.3.