2
Candidate: CVE-2006-0208
4
https://usn.ubuntu.com/usn/usn-261-1
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0208
7
Multiple cross-site scripting (XSS) vulnerabilities in PHP 4.4.1 and 5.1.1,
8
when display_errors and html_errors are on, allow remote attackers to
9
inject arbitrary web script or HTML via inputs to PHP applications that are
10
not filtered when they are included in the resulting error message.
14
dapper_php4: released (4.4.2-1build1)
15
edgy_php4: released (4.4.2-1build1)
18
dapper_php5: released (5.1.2-1ubuntu3.9)
19
edgy_php5: released (5.1.6-1ubuntu2.6)
20
feisty_php5: released (5.2.1-0ubuntu1.4)
21
devel_php5: released (5.2.3-1ubuntu5)