Home page logo

bugtraq logo Bugtraq mailing list archives

Re: [Full-disclosure] Critical PHP bug - act ASAP if you are running web with sensitive data
From: Moriyoshi Koizumi <moriyoshi () at wakwak com>
Date: Thu, 06 Apr 2006 09:58:41 +0900

Peter Conrad wrote:


On Mon, Apr 03, 2006 at 11:06:01PM +0900, Moriyoshi Koizumi wrote:
While this is not part of the HTML / HTTP standards, major browsers around try to send such characters in the user input as HTML entities that cannot
all be represented in the encoding of the originating HTML page

out of curiosity: can you give an example for that behaviour? I've
never seen it.


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]