CVE-2002-0484

move_uploaded_file in PHP does not does not check for the base directory (open_basedir), which could allow remote attackers to upload files to unintended locations on the system.

Affected Software

Name	Vendor	Start Version	End Version
Php	Php	3.0 (including)	3.0 (including)
Php	Php	3.0.1 (including)	3.0.1 (including)
Php	Php	3.0.2 (including)	3.0.2 (including)
Php	Php	3.0.3 (including)	3.0.3 (including)
Php	Php	3.0.4 (including)	3.0.4 (including)
Php	Php	3.0.5 (including)	3.0.5 (including)
Php	Php	3.0.6 (including)	3.0.6 (including)
Php	Php	3.0.7 (including)	3.0.7 (including)
Php	Php	3.0.8 (including)	3.0.8 (including)
Php	Php	3.0.9 (including)	3.0.9 (including)
Php	Php	3.0.10 (including)	3.0.10 (including)
Php	Php	3.0.11 (including)	3.0.11 (including)
Php	Php	3.0.12 (including)	3.0.12 (including)
Php	Php	3.0.13 (including)	3.0.13 (including)
Php	Php	3.0.14 (including)	3.0.14 (including)
Php	Php	3.0.15 (including)	3.0.15 (including)
Php	Php	3.0.16 (including)	3.0.16 (including)
Php	Php	3.0.17 (including)	3.0.17 (including)
Php	Php	3.0.18 (including)	3.0.18 (including)
Php	Php	4.0 (including)	4.0 (including)
Php	Php	4.0.1 (including)	4.0.1 (including)
Php	Php	4.0.1-patch1 (including)	4.0.1-patch1 (including)
Php	Php	4.0.1-patch2 (including)	4.0.1-patch2 (including)
Php	Php	4.0.2 (including)	4.0.2 (including)
Php	Php	4.0.3 (including)	4.0.3 (including)
Php	Php	4.0.3-patch1 (including)	4.0.3-patch1 (including)
Php	Php	4.0.4 (including)	4.0.4 (including)
Php	Php	4.0.5 (including)	4.0.5 (including)
Php	Php	4.0.6 (including)	4.0.6 (including)
Php	Php	4.0.7 (including)	4.0.7 (including)
Php	Php	4.0.7-rc1 (including)	4.0.7-rc1 (including)
Php	Php	4.0.7-rc2 (including)	4.0.7-rc2 (including)
Php	Php	4.0.7-rc3 (including)	4.0.7-rc3 (including)
Php	Php	4.1.0 (including)	4.1.0 (including)
Php	Php	4.1.1 (including)	4.1.1 (including)
Php	Php	4.1.2 (including)	4.1.2 (including)

NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-0484
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html

Affected Software

References