VYPR
Unrated severityNVD Advisory· Published Nov 3, 2004· Updated Jun 16, 2026

CVE-2004-0958

CVE-2004-0958

Description

php_variables.c in PHP before 5.0.2 allows remote attackers to read sensitive memory contents via (1) GET, (2) POST, or (3) COOKIE GPC variables that end in an open bracket character, which causes PHP to calculate an incorrect string length.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • PHP/PHP2 versions
    cpe:2.3:a:php:php:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:php:php:*:*:*:*:*:*:*:*range: <=5.0.2
    • (no CPE)range: <5.0.2

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.