Php@* Security Vulnerabilities and Issues — Php@* CVE List

Lucene search

Php GroupPhp*

2 matches found

CVE•added 2006/06/14 11:2 p.m.•54 views

CVE-2006-3016

Unspecified vulnerability in session.c in PHP before 5.1.3 has unknown impact and attack vectors, related to "certain characters in session names," including special characters that are frequently associated with CRLF injection, SQL injection, cross-site scripting (XSS), and HTTP response splitting...

9.3CVSS6.4AI score0.06322EPSS

CVE•added 2006/06/14 11:2 p.m.•54 views

CVE-2006-3018

Unspecified vulnerability in the session extension functionality in PHP before 5.1.3 has unknown impact and attack vectors related to heap corruption.

7.5CVSS6.4AI score0.01165EPSS