mysqli extension format string vulnerability, session extension session id HTTP response splitting.
vulners.com/securityvulns/securityvulns:doc:11021
vulners.com/securityvulns/securityvulns:doc:11022