CVE-2005-3388
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
CVE
CVE-2005-3388
Status
Candidate
Description
Cross-site scripting (XSS) vulnerability in the phpinfo function in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5 allows remote attackers to inject arbitrary web script or HTML via a crafted URL with a "stacked array assignment."
Phase
Assigned (01.11.2005)
NVD:
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2005-3388
References
BID :
15248
BUGTRAQ :
20051031 Advisory 18/2005: PHP Cross Site Scripting (XSS) Vulnerability in phpinfo()
CONFIRM :
http://support.avaya.com/elmodocs2/security/ASA-20...
CONFIRM :
http://www.php.net/release_4_4_1.php
FEDORA :
FLSA:166943
FRSIRT :
ADV-2005-2254
FRSIRT :
ADV-2006-4320
GENTOO :
GLSA-200511-08
HP :
HPSBMA02159
HP :
SSRT061238
MANDRIVA :
MDKSA-2005:213
MISC :
http://www.hardened-php.net/advisory_182005.77.html
OPENPKG :
OpenPKG-SA-2005.027
REDHAT :
RHSA-2005:831
REDHAT :
RHSA-2005:838
REDHAT :
RHSA-2006:0549
SECTRACK :
1015130
SECUNIA :
17371
SECUNIA :
17490
SECUNIA :
17510
SECUNIA :
17531
SECUNIA :
17557
SECUNIA :
17559
SECUNIA :
18198
SECUNIA :
18669
SECUNIA :
21252
SECUNIA :
22691
SUSE : SUSE-SR:2005:026
SUSE :
SUSE-SR:2005:027
TURBO :
TLSA-2006-38
UBUNTU :
USN-232-1
SecurityVulns:
Multiple PHP bugs
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Nizhny Novgorod
Enter your search terms
Web
securityvulns.com
Submit search form
test server
