AutoRank search.php Keyword Variable XSS

2006-07-02T10:04:05
ID OSVDB:27003
Type osvdb
Reporter OSVDB
Modified 2006-07-02T10:04:05

Description

Technical Description

This vulnerability is only present when the register_globals PHP option is set to 'on'. This has not been the default setting for PHP installs since version 4.2.0 (22-Apr-2002).

References:

Vendor URL: http://www.jmbsoft.com/ Secunia Advisory ID:20929 Related OSVDB ID: 27004 Other Advisory URL: http://www.majorsecurity.de/advisory/major_rls19.txt Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-07/0024.html Keyword: MajorSecurity #19 FrSIRT Advisory: ADV-2006-2658 FrSIRT Advisory: ADV-2006-2659 CVE-2006-3377 Bugtraq ID: 18796