AutoRank search.php Keyword Variable XSS

ID OSVDB:27003
Type osvdb
Reporter OSVDB
Modified 2006-07-02T10:04:05


Technical Description

This vulnerability is only present when the register_globals PHP option is set to 'on'. This has not been the default setting for PHP installs since version 4.2.0 (22-Apr-2002).


Vendor URL: Secunia Advisory ID:20929 Related OSVDB ID: 27004 Other Advisory URL: Mail List Post: Keyword: MajorSecurity #19 FrSIRT Advisory: ADV-2006-2658 FrSIRT Advisory: ADV-2006-2659 CVE-2006-3377 Bugtraq ID: 18796