oss-sec mailing list archives

Re: CVE Request: ViewVC 1.1.5 / 1.0.11 -- XSS via user-provided 'search_re' input

From: Reed Loden <reed () reedloden com>
Date: Tue, 30 Mar 2010 07:08:01 -0500

On Tue, 30 Mar 2010 07:03:44 -0500
Reed Loden <reed () reedloden com> wrote:

Again, still need a CVE for the XSS fix in ViewVC 1.1.4 and 1.1.10,
however.


Never mind on both these things, considering they've both already been
discussed on the list (*sigh*). I apparently should stop sending e-mails
at 7:07am when I haven't slept at all. :(

Apologies,
~reed

-- 
Reed Loden - <reed () reedloden com>

Attachment: _bin
Description:

Current thread:

CVE Request: ViewVC 1.1.5 / 1.0.11 -- XSS via user-provided 'search_re' input Reed Loden (Mar 29)
- Re: CVE Request: ViewVC 1.1.5 / 1.0.11 -- XSS via user-provided 'search_re' input Secunia Research (Mar 30)
- Re: CVE Request: ViewVC 1.1.5 / 1.0.11 -- XSS via user-provided 'search_re' input Reed Loden (Mar 30)
  - Re: CVE Request: ViewVC 1.1.5 / 1.0.11 -- XSS via user-provided 'search_re' input Reed Loden (Mar 30)
  - Re: CVE Request: ViewVC 1.1.5 / 1.0.11 -- XSS via user-provided 'search_re' input Steven M. Christey (Mar 30)