PHP Transparent Session ID Cross Site Scripting Vulnerability

The following proof of concept URL has been made available:

http://www.example.org/index.php?PHPSESSID="><script>...</script>


 

Privacy Statement
Copyright 2010, SecurityFocus