Warning: ini_get_all() has been disabled for security reasons

You’re welcome! ??

My hosting service told me they updated both PHPto 5.6 AND enabled ini_get_all(). Thanks for the help.

Having the same issue not yet found a solution

There are solutions all over this thread. We understand that you’re frustrated, but if you choose to jump into this thread, please do everyone involved the courtesy of actually reading the thread.

@james Hugg, My explanation skill sucks lol Sorry for that.
They enabled the ini_get_all and the problem solved, But they didn’t enable PhpInfo because they said it’s not possible for us to do this on shared hosting. I just asked if it’s normal to be disabled for shared hostings or they are forcoing me to pay LOADS and get a dedicated server. Thanks in advance, You are helping us like a boss xD

@shaz3e, contact your host provider and ask them to enable ini_get_all for you

Awesome, good to hear that it’s working for you now! As for phpinfo overall being disabled, the only “legitimate” reason for disabling it is if they’re trying to hide unpatched vulnerabilities or unmaintained software. Like ini_get_all it’s purely informational, and the information provided cannot be used in any malicious way (assuming the server is properly maintained).

Sounds like it’s still a good time to consider moving. ??

Thanks James. I had the same problem and went into my hosting (United Domains) account’s control panel and selected the PHP version 5.6 (instead of 5.4) … problem solved! Many thanks!

You’re welcome! ??

Our sites are hosted on amazon web services and they have not blocked the ini_get_all, and its not in our php.ini file. but it does show up when we look in our configs using a browser. The .ini file we are checking is the one listed in the php settings via siteurl.com/info.php.
Is there another file or plugin that could be superceding the php.ini?

Just thought i’d chime in to say the same thing happened to me. All of a sudden I couldn’t run any updates and the fix of changing php.ini and disabled “ini_get_all”.

Have to say I’m not entirely happy to have had to amend the php.ini file, feels like too much tinkering with settings I’m not familiar with.

@sobriant74 Look for phprc, and if there isn’t one, I suggest contacting support over there. Their server configuration is rather unique.

@scullydion I suggest contacting your hosting provider. This perfectly safe and purely informative call should have never been blocked by them in the first place. I left a copy/paste template for that much earlier at https://www.ads-software.com/support/topic/warning-ini_get_all-has-been-disabled-for-security-reasons?replies=86&view=all#post-8763474

same problem here… I will try to contact the hoster.

SOLVED

Just been Googling (to preempt possible hosting company objections to enabling the function)… Looks like it was possibly disabled due to a vulnerability in php 5.3. I’m guessing this vulnerability is now patched in current php version, but php.ini has not been updated accordingly.

Thank you sendmecakes. My problem solved .

I changed the php version of my host from CPANEL settings from 5.3 to 5.6 , and the error is gone. (by changing to 5.4 or 5.5 the error exists)

Can you mark the Solution or set at the end of this thread?
Thank you

Well, I suppose one benefit of all this is getting PHP upgraded on a few hosts. For those hosts that aren’t willing, might point them to this: PHP: Unsupported Branches.

5.5 and lower is eol currently.