[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    [oss-security] CVE request: moin multiple XSS
From:       Raphael Geissert <geissert () debian ! org>
Date:       2010-07-01 0:50:56
Message-ID: i0gop6$9p$1 () dough ! gmane ! org
[Download RAW message or body]

Hi,

Multiple XSS vulnerabilities have been reported in moin.

References:
http://moinmo.in/MoinMoinBugs/1.9.2UnescapedInputForThemeAddMsg
http://bugs.debian.org/584809

Could a CVE be assigned?

Note that the original bug report only covered PageEditor.py, while upstream 
fixed multiple others at the same time. Not sure if you want to assign two 
different ids.

Regards,
-- 
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net


[prev in list] [next in list] [prev in thread] [next in thread] 

Configure | About | News | Add a list | Sponsored by KoreLogic