WikyBlog include/sessionRegister.php XSS

2007-05-17T04:03:53
ID OSVDB:36076
Type osvdb
Reporter OSVDB
Modified 2007-05-17T04:03:53

Description

Solution Description

Upgrade to version 1.4.13 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor Specific News/Changelog Entry: http://wikyblog.svn.sourceforge.net/viewvc/wikyblog/trunk/include/sessionRegister.php?r1=127&r2=133 Vendor Specific News/Changelog Entry: http://wikyblog.svn.sourceforge.net/viewvc/wikyblog/trunk/include/sessionRegister.php?view=log Vendor Specific News/Changelog Entry: http://sourceforge.net/project/shownotes.php?release_id=509254 Secunia Advisory ID:25308 ISS X-Force ID: 34373 CVE-2007-2781