CVE-2006-4433
PHP before 4.4.3 and 5.x before 5.1.4 does not limit the character set of the session identifier (PHPSESSID) for third‑party session handlers. The underlying cause is a design limitation in PHP’s session ID handling, which may allow an attacker to insert PHP code into the PHPSESSID stored in the ...