3 matches found
EUVD-2005-4724
Malware in sbrugna...
CVE-2005-4731
The Next action in PEAR HTMLQuickFormController 1.0.4 includes the SID in the URL even when session.useonlycookies is configured, which allows remote attackers to obtain the SID via an HTTP Referer field and possibly other vectors...
CVE-2005-4731
CVE-2005-4731 affects PEAR HTML_QuickForm_Controller 1.0.4 where the Next action includes the session ID in the URL despite session.use_only_cookies being configured. This enables an external attacker to obtain the SID via the HTTP Referer field and possibly other vectors, exposing partial confid...