PHP Header Function Script Injection Vulnerability

info
discussion
exploit
solution
references

PHP Header Function Script Injection Vulnerability

PHP is a freely available, open source web scripting language package. It is available for Microsoft Windows, Linux, and Unix operating systems.

It has been reported that a vulnerability in the PHP header function exists. It may be possible for a user to supply arbitrary script code in an URL that would allow the injection of script code into the HTTP header.