oss-sec mailing list archives

CVE request: punbb < 1.2.19

From: Hanno Böck <hanno () hboeck de>
Date: Mon, 21 Jul 2008 01:16:12 +0200

http://punbb.informer.com/

From Changelog:
    *  Fixed an SMTP command injection vulnerability, discovered by Stefan 
Esser.
    * Fixed an XSS issue in include/parser.php, discovered by Dan Crowley.
    * Fixed issue with database returning the same user on multiple pages of 
the userlist, noticed by hcgtv.
    * Fixed several potential XSS vectors in moderate.php.

-- 
Hanno Böck              Blog:           http://www.hboeck.de/
GPG: 3DBD3B20           Jabber/Mail:    hanno () hboeck de

Attachment: signature.asc
Description: This is a digitally signed message part.

Current thread:

CVE request: punbb < 1.2.19 Hanno Böck (Jul 20)
- Re: CVE request: punbb < 1.2.19 Steven M. Christey (Jul 27)