Описание
PHPIDS before 20070703 does not properly handle (1) arithmetic expressions and (2) unclosed comments, which allows remote attackers to inject arbitrary web script.
PHPIDS before 20070703 does not properly handle (1) arithmetic expressions and (2) unclosed comments, which allows remote attackers to inject arbitrary web script.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-3578
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35519
- http://groups.google.com/group/php-ids/browse_thread/thread/3ec15f69d6b3dba0
- http://osvdb.org/45757
- http://osvdb.org/45758
- http://sla.ckers.org/forum/read.php?2%2C13209%2C13218
- http://sla.ckers.org/forum/read.php?2,13209,13218
EPSS
Процентиль: 57%
0.00351
Низкий
CVE ID
Связанные уязвимости
nvd
больше 18 лет назад
PHPIDS before 20070703 does not properly handle (1) arithmetic expressions and (2) unclosed comments, which allows remote attackers to inject arbitrary web script.
EPSS
Процентиль: 57%
0.00351
Низкий