CVE-2025-9824: Php Recursive Array Mutation By Value
A by-value loop variable is passed to a recursive function that expects an array by reference. Because the loop variable is a local copy of the array element, modifying it by reference in the recursive call does not mutate the original array. This can bypass nested sanitization routines or cause incomplete updates. Iterate using reference `&$val` or use `$ar
PHPβgreprules fetch cve-2025-9824-php-recursive-array-mutation-by-value --engine opengrepDescription
A by-value loop variable is passed to a recursive function that expects an array by reference. Because the loop variable is a local copy of the array element, modifying it by reference in the recursive call does not mutate the original array. This can bypass nested sanitization routines or cause incomplete updates. Iterate using reference `&$val` or use `$ar
Community feedback
0 signals from signed-in users.
- Useful
- 0
- False positive
- 0
- Metadata
- 0