Announcement

Collapse
No announcement yet.

php curl_exec vulnerability with cloudlinux

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • php curl_exec vulnerability with cloudlinux

    Dear Guys,

    Ive installed cpanel with cloudlinux and cagefs.
    I want to know some details about php functions vulnerabilities.
    many of our customers need some functions like curl_exec, phpinfo , ... .
    Is there any vulnerability with those functions (specially curl_exec) I mentioned above?
    Please share with me.
    Thank you very much.

    Regards.

  • #2
    Hello,

    Each users process is executed inside the "cage", i.e. the real file system is not visible to the customer. So it is pretty safe to allow using required PHP functions. In other words, the user wont be able to harm the server if the account will be compromised, but it does not protect the account from customers software vulnerabilities, such as outdated CMS, etc

    Comment

    Working...
    X