Nothing new. Already found: http://securityreason.com/achievement_securityalert/36/
And this will not bypass safe_mode but open_basedir ...
- PHP <= 5.2.5 Safe Mode Bypass admin
- Re: PHP <= 5.2.5 Safe Mode Bypass shsuff
- Re: Re: PHP <= 5.2.5 Safe Mode Bypass Alireza Hassani
