Lukasz Pilorz

**Name of the Vulnerable Software and Affected Versions** CodeIgniter version 1.5.3 **Description** The issue in CodeIgniter allows remote attackers to unset arbitrary global variables. This is demonstrated by a SERVER cookie, which can have an unspecified impact. **Recommendations** For CodeIgniter version 1.5.3, update to a version released after 20070628 to resolve the issue. As a temporary workaround, consider restricting access to the ` sanitize globals` function until a patch is available.