[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[WEB SECURITY] Global Space Exploitation In PHP Based Web Applications

From: Aditya K Sood <zeroknock@xxxxxxxxxxx>
Subject: [WEB SECURITY] Global Space Exploitation In PHP Based Web Applications
Date: Sat, 31 Mar 2007 22:37:02 +0530

Hi all

              The PHP based applications are severely vulnerable to
global space exploitation. This gives rise to XSS .A very generic
analysis have been undertaken. Cutting edge research is on your way.

Look at the issue at:
http://zeroknock.blogspot.com/2007/03/global-space-exploitation-in-php-based.html
http://zeroknock.metaeye.org/analysis/gspace.xhtml

Regards
Adi

----------------------------------------------------------------------------
Join us on IRC: irc.freenode.net #webappsec

Have a question? Search The Web Security Mailing List Archives: http://www.webappsec.org/lists/websecurity/

Subscribe via RSS: http://www.webappsec.org/rss/websecurity.rss [RSS Feed]

Follow-Ups:
- [WEB SECURITY] Re: [Full-disclosure] Global Space Exploitation In PHP Based Web Applications
  - From: Michal Zalewski

Prev by Date: [WEB SECURITY] Re: [Webappsec] [WEB SECURITY] Preventing Cross-site Request Forgeries [ASP.NET crowd]
Next by Date: [WEB SECURITY] Re: [Full-disclosure] Global Space Exploitation In PHP Based Web Applications
Previous by thread: [WEB SECURITY] Reflection on Jeff Williams
Next by thread: [WEB SECURITY] Re: [Full-disclosure] Global Space Exploitation In PHP Based Web Applications
Index(es):
- Date
- Thread

Brought to you by http://www.webappsec.org
Search this site