From:             c dot r dot l dot f at yandex dot ru
Operating system: All
PHP version:      Irrelevant
Package:          Website problem
Bug Type:         Bug
Bug description:Reflected XSS via POST on /mailing-lists.php


Bug: <?php echo $_POST['email']; ?>
Patch: <?php echo clean($_POST['email']); ?>

Affects and
Tested in Firefox 58.0.2

Test script:

Edit bug report at
Try a snapshot (PHP 5.4):
Try a snapshot (PHP 5.5):
Try a snapshot (trunk):
Fixed in SVN:     
Fixed in release: 
Need backtrace:   
Need Reproduce Script:
Try newer version:
Not developer issue:
Expected behavior:
Not enough info:   
Submitted twice:   
PHP 4 support discontinued:
Daylight Savings: 
IIS Stability:    
Install GNU Sed:  
Floating point limitations:
No Zend Extensions:
MySQL Configuration Error:

PHP Webmaster List Mailing List (
To unsubscribe, visit:

Reply via email to