Posts marked with “ini”

Possible vulnerabilities found in PHP session IDs

by · April 9, 2010

1
 

A new advisory warns that a lack of entropy is making session hijacking easier, but only under certain circumstances. Core developer Ilia Alshanetsky gives us the straight dope.