PHP Insecurity - Register_Globals = off

php-security.org — SummaryWhen register_globals is activated the deserialization of the session data can overwrite any global variable, including the _SESSION array. Because of its special implementation this can result in arbitrary code execution.Affected versionsAffected are PHP 4 < 4.4.5 and PHP 5 < 5.2.1 Apr 2, 2007 View in Crawl 4

Save
Bury

0 Comments

No comments yet

It's quiet in here... can you hear the echo?

No more comments on this story. Add your own!

or Join Digg!

Reply to this thread

Submitted by

John McKean 4 Followers

See all from hackerace

Top News in all Topics

Russia Condemns Syria Over Massacre Of 108

Memorial Day: The Saddest Picture

50 Funny Spelling Mistakes on Twitter

So the FBI Sent Out an Agent to Check Up on My FOIA Request ...

Apple’s new iOS 6 Maps app with 3D mapping is coming this summer. [Exclusive Pics]

Romney tells vets dangerous world demands powerful military

10 Crazy High-Tech Military Weapons That Actually Exist

Was Facebook's botched IPO a conspiracy?

Game of Thrones: Saving Private Tyrion

The World's Most Discreet Murder Weapon

©Digg