php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Request #61104 apc gui security
Submitted: 2012-02-16 11:29 UTC Modified: 2016-11-18 22:06 UTC
From: claudiu_beta at yahoo dot com Assigned:
Status: Wont fix Package: APC (PECL)
PHP Version: 5.3.10 OS: any
Private report: No CVE-ID: None
Welcome back! If you're the original bug submitter, here's where you can edit the bug or add additional notes.
If you forgot your password, you can retrieve your password here.
Password:
Status:
Package:
Bug Type:
Summary:
From: claudiu_beta at yahoo dot com
New email:
PHP Version: OS:

 

 [2012-02-16 11:29 UTC] claudiu_beta at yahoo dot com
Description:
------------
---
From manual page: http://www.php.net/apc.configuration
---

apc.php reports should be restricted to certain path because anyone is able to upload this script under his account and see which scripts are cached. It's a big security risk in my opinion.



Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2012-05-30 07:57 UTC] stas@php.net
-Type: Security +Type: Feature/Change Request -Package: *General Issues +Package: APC
 [2016-11-18 22:06 UTC] kalle@php.net
-Status: Open +Status: Wont fix
 [2016-11-18 22:06 UTC] kalle@php.net
APC is no longer supported in favor of opcache that comes bundled with PHP, if you wish to use the user cache, then look at PECL/APCu.
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Tue Dec 03 08:01:28 2024 UTC