CVE-2003-0442
published 2003-07-24CVE-2003-0442: Cross-site scripting (XSS) vulnerability in the transparent SID support capability for PHP before 4.3.2 (session.use_trans_sid) allows remote attackers to…
medium4.3CVSS 3.1
AVNACMAuNCNIPAN
EXPLOIT
Cross-site scripting (XSS) vulnerability in the transparent SID support capability for PHP before 4.3.2 (session.use_trans_sid) allows remote attackers to insert arbitrary script via the PHPSESSID parameter.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| php | php | <= 4.3.1 | — |
| redhat | linux | — | — |
| redhat | linux | — | — |