Home / Vulnerability Database / PHP : Safe mode disabled
PHP
PHP : Safe mode disabled
Classification
OWASP Top 10 2013
OWASP Top 10 2017
OWASP Top 10 2021
HIPAA
CWE
Overview
Safe mode is one of the most important PHP security settings.
Disabled safe_mode option means that PHP will work with files with the privileges of the user who is running PHP (often it is the superuser). Disabled safe_mode is not a vulnerability itself but can facilitate the implementation of other types of attacks.
If the safe_mode option is enabled, the safe_mode_exec_dir option specifies the directory, files from which can be executed.
MEDIUM
DerScanner Severity Score
Do you want to fix PHP : Safe mode disabled in your application?
See also
PHP
PHP : Null salt
PHP
PHP : Empty password
PHP
