Cross-site scripting (XSS) vulnerability in PHP, possibly 5.2.7 and earlier, when display_errors is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: because of the lack of details, it is unclear whether this is related to CVE-2006-0208.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2009-01-02T18:00:00
Updated: 2024-08-07T11:04:44.594Z
Reserved: 2009-01-02T00:00:00
Link: CVE-2008-5814

No data.

Status : Modified
Published: 2009-01-02T18:11:09.627
Modified: 2024-11-21T00:54:57.930
Link: CVE-2008-5814
