July 24, 2001

Security hole in PHPLib 7.2 prepend.php3

Author: JT Smith

Help Net Security: "The PHPLib Team announces phplib-7.2d, availible now. This release fixes the recently
discovered hole in prepend.php3 that can allow a remote attacker to inject non-local
code into any phplib based script.

Please note that this affects all applications that depend on PHPLib. Some apps have
decided to distribute phplib along with their app for easier installation. Please check
your phplib apps to determine if this is the case."


  • Linux
Click Here!