Ioncube: >> Php Encoder Security Vulnerabilities
ioncube_loader_win_5.2.dll in the ionCube Loader 6.5 extension for PHP 5.2.4 does not follow safe_mode and disable_functions restrictions, which allows context-dependent attackers to bypass intended limitations, as demonstrated by reading arbitrary files via the ioncube_read_file function.
CVSS Score
4.3
EPSS Score
0.032
Published
2007-10-14