subject:"\[PHP\] Re\: the \?PHPSESSID=spoofme 'bug'"

Re: [PHP] Re: the ?PHPSESSID=spoofme 'bug'

2002-06-07 Thread Josep R. Raurell

If you destroy the session (for exaple with a logoff button) this dosen work. Josep R. Raurell Giancarlo Pinerolo wrote: >Giancarlo Pinerolo wrote: > >>I myself wrote: >> >>>Can I tell you more than what the subject says? >>>proceeding: >>>Close the browser, clean all your cookies, and open a

[PHP] Re: the ?PHPSESSID=spoofme 'bug'

2002-06-07 Thread Giancarlo Pinerolo

Giancarlo Pinerolo wrote: > > I myself wrote: > > > > Can I tell you more than what the subject says? > > proceeding: > > Close the browser, clean all your cookies, and open any page with that > > ?PHPSESSID=spoofme appended. > > And see what happens. spoofme is not the exact term. ?PHPSESSID=

[PHP] Re: the ?PHPSESSID=spoofme 'bug'

2002-06-07 Thread Giancarlo Pinerolo

I myself wrote: > > Can I tell you more than what the subject says? > proceeding: > Close the browser, clean all your cookies, and open any page with that > ?PHPSESSID=spoofme appended. > And see what happens. > > 1) No cookies are left > 2) a session 'spoofme' is created > > Do you need more?

Re: [PHP] Re: the ?PHPSESSID=spoofme 'bug'

[PHP] Re: the ?PHPSESSID=spoofme 'bug'

[PHP] Re: the ?PHPSESSID=spoofme 'bug'

3 matches

Site Navigation

Mail list logo

Footer information