Main Vulnerability Database Exploits ID:11511 - Exploit for Input validation error in PHP - CVE-2005-3390

ID:11511 - Exploit for Input validation error in PHP - CVE-2005-3390

Published: June 9, 2025

Vulnerability identifier: #VU110502

Vulnerability risk: Medium

CVE-ID: CVE-2005-3390

CWE-ID: CWE-20

Exploitation vector: Remote access

Vulnerable software:
PHP

Link to public exploit:

https://www.exploit-db.com/exploits/26443/

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

The RFC1867 file upload feature in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5, when register_globals is enabled, allows remote attackers to modify the GLOBALS array and bypass security protections of PHP applications via a multipart/form-data POST request with a "GLOBALS" fileupload field.

Remediation

Install update from vendor's website.

ID:11511 - Exploit for Input validation error in PHP - CVE-2005-3390

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human