What are the security threats of enabling php zip extension?

Mugoma · Jan 16, 2017

By default EasyApache doesn't compile with php zip extension.

But we have had several users asking for it.

Are there any risks of enabling php zip extension?

cPanelMichael · Jan 16, 2017

Hello,

You can find discussion of this topic on the following third-party URL:

What are the security threats of zip file uploads and what preventive actions should be taken?

Thank you.

Mugoma · Jan 16, 2017

I had already seen that link.

The link discusses about zip file uploads while my question is about 'PHP zip extension'. I am not conversant with the extension but don't think it has anything to do with uploading files.

cPanelMichael · Jan 23, 2017

Hello,

I'm not aware of any security issues with the PHP Zip extension itself. The security discussion would likely relate more-so the inclusion of malicious files in the zip archives that a PHP script would read. That said, we do provide a list of system administration service companies if you'd like specific security-related advice:

System Administration Services | cPanel Forums

Thanks!

Thread starter	Similar threads	Forum	Replies	Date
N	mod-security denying post method due to client's text matching pattern	Security	5	Jun 30, 2022
	ModSecurity Traditional Mode or Anomaly Score	Security	1	Apr 6, 2022
C	Mod_Security rules for Joomla login failures	Security	1	Apr 4, 2022
G	Using ModSecurity	Security	4	Mar 30, 2022
J	Cgi-bin directory security	Security	3	Feb 26, 2022

Search

Search

What are the security threats of enabling php zip extension?

Mugoma

Well-Known Member

cPanelMichael

Administrator

Mugoma

Well-Known Member

cPanelMichael

Administrator