Month of PHP Bugs – Day 9
Day 9 of the PHP month of the bugs brings a vulnerability which involves POST data in the FDF format. I’m just wondering if Stefan Esser’s commitment to release at least one PHO bug a day will last until March 31. Anyway, here is number 17 :
- PHP ext/filter FDF Post Bypass Vulnerability POST data in the FDF format is not processed at all by ext/filter. When PHP is compiled with FDF support, sitewide enforced filtering will not be performed on it.
Thank you for reading this post. You can now Leave A Comment (0) or Leave A Trackback.
Print This Post
Post Info
This entry was posted on Sunday, March 11th, 2007 . Tagged with:You can follow any responses to this entry through the Comments Feed. You can Leave A Comment, or A Trackback.
Previous Post: 2 Web Forensics Tools – Web Historian and Index.dat Analyzer »
Next Post: Web App Security Hall Of Fame – Meet the Gurus part 4 »
Read More
Related Reading:
Latest Posts:
- Animated Presentation on Sony PSN Hack
- ArcSight Tip #1 – arcsight managersetup notification test
- I’m a CISSP
- Operation:Payback or Social Vendetta is Here
- I got owned by Malware Destructor 2011 Virus
- New Downtime Cost Calculator by Storagepipe.com. What if ?
- Securing Your Network from Web Threats
- My Twitter Notes on 2010-07-25
- New NetWitness Visualize : Welcome To The Future!
- My Twitter Notes on 2010-07-18
