Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2010-3065
Description:The default session serializer in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 does not properly handle the PS_UNDEF_MARKER marker, which allows context-dependent attackers to modify arbitrary session variables via a crafted session variable name.
Test IDs: None available
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2010-3065
Debian Security Information: DSA-2089 (Google Search)
RedHat Security Advisories: RHSA-2010:0919
SuSE Security Announcement: SUSE-SR:2010:017 (Google Search)
SuSE Security Announcement: SUSE-SR:2010:018 (Google Search)

© 1998-2021 E-Soft Inc. All rights reserved.