2008/6/12 M. Shirk <[EMAIL PROTECTED]>:
> But PHPNuke is not vulnerable right?
I suppose there's a first time for everything
___
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored
But PHPNuke is not vulnerable right?
(breaths a sigh of relief)
Shirkdog
' or 1=1--
http://www.shirkdog.us
> Date: Thu, 12 Jun 2008 10:40:13 -0700
> From: [EMAIL PROTECTED]
> To: full-disclosure@lists.grok.org.uk
> Subject: [Full-disclosure] HTTP cache poisoning via Host
I've confirmed this in default installations of a few web frameworks
including Rails, Zope and WordPress.
The basic vulnerability comes when:
1) Your web server does not validate the Host header
2) Your code or your framework uses the Host header value to build links
3) You employ page or fragmen