Main
Vulnerability Database
Exploits
ID:11524 - Exploit for Input validation error in PHP - CVE-2000-0059
ID:11524 - Exploit for Input validation error in PHP - CVE-2000-0059
Published: June 10, 2025
Vulnerability identifier: #VU110553
Vulnerability risk: High
CVE-ID: CVE-2000-0059
CWE-ID: CWE-20
Exploitation vector: Remote access
Vulnerable software:
PHP
PHP
Link to public exploit:
Vulnerability description
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
PHP3 with safe_mode enabled does not properly filter shell metacharacters from commands that are executed by popen, which could allow remote attackers to execute commands.
Remediation
Install update from vendor's website.