[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] CVE request phpmyadmin (Fwd: XSS in phpMyadmin)
From:       Hanno =?utf-8?q?B=C3=B6ck?= <hanno () hboeck ! de>
Date:       2008-10-29 15:52:03
Message-ID: 200810291652.03503.hanno () hboeck ! de
[Download RAW message or body]


I just re-checked this and it also works with register_globals off!

So please change the cve description and it's much more severe than I'd 
thought.


-- 
Hanno Böck		Blog:		http://www.hboeck.de/
GPG: 3DBD3B20		Jabber/Mail:	hanno@hboeck.de

http://x1000malquer.de/ - ab 8.11. Atomtransporte stoppen

["signature.asc" (application/pgp-signature)]

[prev in list] [next in list] [prev in thread] [next in thread]