oss-sec mailing list archives

CVE request: vanilla forums cookie theft, plugin access control

From: Hanno Böck <hanno () hboeck de>
Date: Sun, 9 Oct 2011 10:39:31 +0200

http://vanillaforums.org/discussion/14397/vanilla-2.0.17-released

two issues:

before 2.0.17.9 - [SECURITY] Fixed cookie theft vulnerability.


before 2.0.17.10 - [SECURITY] Fixed Facebook, Twitter, and Embed
plugins' access control.


-- 
Hanno Böck              mail/jabber: hanno () hboeck de
GPG: BBB51E42           http://www.hboeck.de/

Attachment: signature.asc
Description:

Current thread:

CVE request: vanilla forums cookie theft, plugin access control Hanno Böck (Oct 09)
- Re: CVE request: vanilla forums cookie theft, plugin access control Josh Bressers (Oct 10)