PHP 5.2.3 - EXT/Session HTTP Response Header Injection

EDB-ID:

30130

CVE:

2007-3799

EDB Verified:

Author:

Stefan Esser

Type:

remote

Exploit: /

Platform:

PHP

Date:

2007-06-04

Vulnerable App:

source: https://www.securityfocus.com/bid/24268/info

PHP is prone to an HTTP-response-header-injection vulnerability because it fails to sanitize user-supplied input.

An attacker can exploit this issue to inject additional cookie attributes into session cookies. This may lead to other attacks.

This issue affects PHP 5.2.3 (and prior versions) and PHP 4.4.7 (and prior versions). 

http://www.example.com/session.php/PHPSESSID=ID;INJECTED=ATTRIBUTE;/

Tags:

Advisory/Source: Link

Databases	Links	Sites	Solutions
Exploits	Search Exploit-DB	OffSec	Courses and Certifications
Google Hacking	Submit Entry	Kali Linux	Learn Subscriptions
Papers	SearchSploit Manual	VulnHub	OffSec Cyber Range
Shellcodes	Exploit Statistics		Proving Grounds
			Penetration Testing Services