PHP PHPInfo Large Input Cross-Site Scripting Vulnerability

PHP PHPInfo Large Input Cross-Site Scripting Vulnerability

Attackers may exploit this issue via a web client.

The following proof-of-concept URIs are available:

http://www.example.com/phpinfo.php?cx[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][]=[XSS]
http://www.example.com/phpinfo.php?cx[]=ccccc..~4096chars...ccc[XSS]