You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
When the register_argc_argv php directive is set to on , and users call any URL with a special crafted query string, they are able to change the environment used by the framework when handling the request.
Resolution
The framework now ignores argv values for environment detection on non-cli SAPIs.
Description
When the
register_argc_argv phpdirective is set toon, and users call any URL with a special crafted query string, they are able to change the environment used by the framework when handling the request.Resolution
The framework now ignores argv values for environment detection on non-cli SAPIs.