CVE-1999-0068

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Oct 19, 1997

Updated: Nov 20, 2024

Summary

CVE-1999-0068 is a vulnerability affecting the CGI PHP mylog script. An attacker can exploit this weakness to read any file on the target server, posing a significant security risk. The vulnerability arises due to improper file access control in the script, enabling unauthorized users to gain sensitive information. This issue was discovered in 1999 and has the potential to cause data breaches if not addressed promptly. To mitigate the risk, it's essential to update and secure affected PHP installations or configure the scripts to restrict file access.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

PHP: Hypertext Preprocessor

Affected Vendors

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlJ0j
https://www.cve.org/CVERecord?id=CVE-1999-0068
https://nvd.nist.gov/vuln/detail/CVE-1999-0068

Back to Vulnerability Database