oss-sec mailing list archives
CVE request: punbb < 1.2.19
From: Hanno Böck <hanno () hboeck de>
Date: Mon, 21 Jul 2008 01:16:12 +0200
http://punbb.informer.com/ From Changelog: * Fixed an SMTP command injection vulnerability, discovered by Stefan Esser. * Fixed an XSS issue in include/parser.php, discovered by Dan Crowley. * Fixed issue with database returning the same user on multiple pages of the userlist, noticed by hcgtv. * Fixed several potential XSS vectors in moderate.php. -- Hanno Böck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber/Mail: hanno () hboeck de
Attachment:
signature.asc
Description: This is a digitally signed message part.
Current thread:
- CVE request: punbb < 1.2.19 Hanno Böck (Jul 20)
- Re: CVE request: punbb < 1.2.19 Steven M. Christey (Jul 27)