Lucene search

K
securityvulnsFULL-DISCLOSURESECURITYVULNS:VULN:5398
HistoryJan 29, 2006 - 12:00 a.m.

Multiple PHP vulnerabilities

2006-01-2900:00:00
FULL-DISCLOSURE
vulners.com
23

phpinfo() crossite scripting, parse_str() register_globals activisation possibility, $GLOBALS variable modification witrh HTTP POST form 'fileupload' field. It's also possible to modify any variable with GLOBALS[variable].

CPENameOperatorVersion
phpeq4.4
phpeq5.0