[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248038

 
 

909

 
 

194772

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2007-5899Date: (C)2007-11-20   (M)2024-02-22


The output_add_rewrite_var function in PHP before 5.2.5 rewrites local forms in which the ACTION attribute references a non-local URL, which allows remote attackers to obtain potentially sensitive information by reading the requests for this URL, as demonstrated by a rewritten form containing a local session ID.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.3
Exploit Score: 8.6
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: PARTIAL
Integrity: NONE
Availability: NONE
  
Reference:
SECUNIA-27659
SECUNIA-27864
SECUNIA-28249
SECUNIA-30040
SECUNIA-30828
SECUNIA-31119
SECUNIA-31124
SECUNIA-31200
OSVDB-38918
DSA-1444
FEDORA-2008-3864
MDVSA-2008:125
MDVSA-2008:126
MDVSA-2008:127
RHSA-2008:0505
RHSA-2008:0544
RHSA-2008:0545
RHSA-2008:0546
RHSA-2008:0582
SSRT080056
USN-549-1
USN-549-2
USN-628-1
http://bugs.php.net/bug.php?id=42869
http://wiki.rpath.com/wiki/Advisories:rPSA-2007-0242
http://www.php.net/ChangeLog-5.php#5.2.5
http://www.php.net/releases/5_2_5.php
https://issues.rpath.com/browse/RPL-1943
https://launchpad.net/bugs/173043
oval:org.mitre.oval:def:11211

CPE    1
cpe:/a:php:php
CWE    1
CWE-200
OVAL    3
oval:org.secpod.oval:def:301343
oval:org.secpod.oval:def:301251
oval:org.mitre.oval:def:7538

© SecPod Technologies