Description

Cross-site scripting (XSS) vulnerability in the transparent SID support capability for PHP before 4.3.2 (session.use_trans_sid) allows remote attackers to insert arbitrary script via the PHPSESSID parameter.

Remediation

References

CVE-2003-0442

Related Vulnerabilities

ATutor Other Vulnerability (CVE-2015-7712)

WordPress Plugin Videos on Admin Dashboard Cross-Site Scripting (1.1.3)

MySQL CVE-2016-3521 Vulnerability (CVE-2016-3521)

SeoPanel Cross-site Scripting (XSS) Vulnerability (CVE-2020-35930)

ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-9049)

Severity

Medium

Classification

CVE-2003-0442

Tags

Missing Update Known Vulnerabilities