Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

PHP Trans SID XSS (Was: New php release with security fixes)

From: "Sverre H. Huseby" <shh () thathost com>
Date: Fri, 30 May 2003 14:41:53 +0200
It also fixes the following, which wasn't mentioned in the summary (or
elsewhere, as far as I can see):

  "Cross-site Scripting in PHP's Transparent Session ID Support"
   http://shh.thathost.com/secadv/2003-05-11-php.txt


Sverre.

-- 
shh () thathost com
http://shh.thathost.com/
Previous By Date Next
Previous By Thread Next

Current thread: