PHP121 Instant Messenger php121login.php Cookie Field SQL Injection

2006-04-12T08:02:37
ID OSVDB:24580
Type osvdb
Reporter OSVDB
Modified 2006-04-12T08:02:37

Description

Technical Description

This vulnerability is only present when the magic_quotes_gpc PHP option is 'off'.

References:

Vendor URL: http://www.php121.com/ Security Tracker: 1015936 Secunia Advisory ID:19643 Generic Exploit URL: http://milw0rm.com/exploits/1666 FrSIRT Advisory: ADV-2006-1349 CVE-2006-1828 Bugtraq ID: 17509