CVE-2012-1172 — Vulnetix

CVE-2012-1172 PUBLISHED

EPSS 11.85% · 93.9th percentile

Risk Scores

EPSS Score

11.85%

93.9th percentile

Exploit Intelligence

http://isisblogs.poly.edu/2011/08/11/php-not-properly-checking-params/ (nist-nvd)
https://bugs.php.net/bug.php?id=48597 (nist-nvd)
https://bugs.php.net/bug.php?id=54374 (nist-nvd)
https://nealpoole.com/blog/2011/10/directory-traversal-via-php-multi-file-uploads/ (nist-nvd)
https://students.mimuw.edu.pl/~ai292615/php_multipleupload_overwrite.pdf (nist-nvd)
CVE-2014-7169 Shell Shock (github-poc)
CVE-2014-7169 Shell Shock (github-poc)
CVE-2014-7169 Shell Shock (github-poc)
CVE-2014-7169 Shell Shock (github-poc)
CVE-2014-7169 Shell Shock (github-poc)

…and 551 more exploits

Timeline

Sep 16, 2010 PoC Published
May 24, 2012 CVE Published
Sep 6, 2015 PoC Published
Oct 9, 2020 PoC Published
Feb 4, 2022 EPSS Score
Aug 31, 2022 PoC Published
Jun 17, 2023 EPSS Score
Jun 12, 2024 EPSS Score
Mar 19, 2025 EPSS Score
Mar 29, 2025 EPSS Score
Mar 30, 2025 EPSS Score
Apr 5, 2025 EPSS Score

References

https://cert.ssi.gouv.fr/avis/CERTA-2012-AVI-244/ advisory
http://www.php.net/archive/2012.php#id2012-04-26-1 advisory
https://cert.ssi.gouv.fr/avis/CERTA-2012-AVI-512/ advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›