Computer Security
[EN] securityvulns.ru no-pyccku


Apache unfiltered HTTP methods
Published:25.04.2007
Source:
SecurityVulns ID:7637
Type:remote
Threat Level:
4/10
Description:HTTP request method is not checked for RFC2616 complience. Under specific conditions it may lead, for example, to crossite scripting.
Original documentdocumentMichal Majchrowicz, [Full-disclosure] Apache/PHP REQUEST_METHOD XSS Vulnerability (25.04.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod