#361853 - [CVE-2006-0996] phpinfo() Cross Site Scripting

Reported by: Oliver Paulus <oliver@code-project.org>

Date: Mon, 10 Apr 2006 19:33:06 UTC

Severity: important

Tags: security

Found in versions php4/4:4.3.10-16, 4:4.4.2-1.1

Done: sean finney <seanius@seanius.net>

Bug is archived. No further changes may be made.

Received: (at control) by bugs.debian.org; 11 Apr 2006 13:31:51 +0000
From ido@vif.com Tue Apr 11 06:31:51 2006
Return-path: <ido@vif.com>
Received: from mail.vif.com ([216.239.64.153] helo=zanzibar.vif.com)
	by spohr.debian.org with esmtp (Exim 4.50)
	id 1FTIyE-0006YI-Ty
	for control@bugs.debian.org; Tue, 11 Apr 2006 06:31:51 -0700
Received: from [216.239.86.242] (ip216-239-86-242.vif.net [216.239.86.242])
	by zanzibar.vif.com (8.13.6/8.13.6) with ESMTP id k3BDVn5N074278
	for <control@bugs.debian.org>; Tue, 11 Apr 2006 09:31:49 -0400 (EDT)
	(envelope-from ido@vif.com)
Message-ID: <443BAFCB.1040400@vif.com>
Date: Tue, 11 Apr 2006 09:31:55 -0400
From: Filipus Klutiero <ido@vif.com>
User-Agent: Mozilla Thunderbird 1.0.2 (X11/20051002)
X-Accept-Language: fr, en
MIME-Version: 1.0
To: control@bugs.debian.org
Subject: Reopen
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-vif-MailScanner-Information: Please contact the ISP for more information
X-vif-MailScanner: Found to be clean
X-vif-MailScanner-From: ido@vif.com
Delivered-To: control@bugs.debian.org
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 
	(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level: 
X-Spam-Status: No, hits=-4.0 required=4.0 tests=BAYES_00,ONEWORD,
	VALID_BTS_CONTROL autolearn=no version=2.60-bugs.debian.org_2005_01_02

Debian Bug report logs - #361853 [CVE-2006-0996] phpinfo() Cross Site Scripting

Debian Bug report logs - #361853
[CVE-2006-0996] phpinfo() Cross Site Scripting