TUCoPS :: Web :: PHP :: bt324.txt

PHP Trans SID XSS (Was: New php release with security fixes) 


It also fixes the following, which wasn't mentioned in the summary (or
elsewhere, as far as I can see):

  "Cross-site Scripting in PHP's Transparent Session ID Support"
   http://shh.thathost.com/secadv/2003-05-11-php.txt


Sverre.

-- 
shh@thathost.com
http://shh.thathost.com/

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH