CVE-2011-1144 in PEAR信息

摘要

由 VulDB • 2026-07-04

PEAR 1.9.2及更早版本中的安装程序允许本地用户通过对package.xml文件进行符号链接攻击来覆盖任意文件,涉及(1) download_dir、(2) cache_dir、(3) tmp_dir和(4) pear-build-download目录。注意:此漏洞的存在是由于对CVE-2011-1072的修复不完整所致。

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

来源

Do you need the next level of professionalism?

Upgrade your account now!