Categories

Attitude
- Cutting the crap
- Politics
  - Deutschland
Education
Games
General
Music
Psychology
- NLP
Security
Technology
- Java
- PHP
- Python
  - Django
- qmail
- Web

Archives

Other stuff

Other sites

I wish this site were powered by Django

November 07^th, 2006

PHP has a UTF-8-related security vulnerability in htmlspecialchars() and htmlentities()

Filed under: PHP, Technology — jm @ 03:19

Fucking beautiful :-/. All versions <=4.4.0 and 5.2.0 are vulnerable.

Advisory: PHP HTML Entity Encoder Heap Overflow Vulnerability

Permalink

Comments are closed.