Main Vulnerability Database Exploits ID:11538 - Exploit for Input validation error in PHP - CVE-2006-4625

ID:11538 - Exploit for Input validation error in PHP - CVE-2006-4625

Published: June 10, 2025

Vulnerability identifier: #VU110470

Vulnerability risk: Low

CVE-ID: CVE-2006-4625

CWE-ID: CWE-20

Exploitation vector: Local access

Vulnerable software:
PHP

Link to public exploit:

https://www.exploit-db.com/exploits/28504/

Vulnerability description

The vulnerability allows a local user to read and manipulate data.

PHP 4.x up to 4.4.4 and PHP 5 up to 5.1.6 allows local users to bypass certain Apache HTTP Server httpd.conf options, such as safe_mode and open_basedir, via the ini_restore function, which resets the values to their php.ini (Master Value) defaults.

Remediation

Install update from vendor's website.

ID:11538 - Exploit for Input validation error in PHP - CVE-2006-4625

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human