Package(s):	php	CVE #(s):	CVE-2006-1490
Created:	April 4, 2006	Updated:	April 4, 2006
Description:	A vulnerability was discovered where the html_entity_decode() function would return a chunk of memory with length equal to the string supplied, which could include php code, php ini data, other user data, etc.
Alerts:	Mandriva MDKSA-2006:063 php 2006-04-02

---

to post comments