oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE request: spip before 1.9.2.o, 2.0.18 and 2.1.13 multiple XSS

From: Kurt Seifried <kseifried () redhat com>
Date: Tue, 01 May 2012 13:29:10 -0600
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 04/30/2012 02:56 PM, Hanno Böck wrote:

http://www.securityfocus.com/bid/53216/info 
http://archives.rezo.net/archives/spip-en.mbox/U5QUZ6WJRAJC7H5BR7W5SQG6WCD3PXL7/

 Info is very limited, though I'd suggest just having one CVE
referring to "multiple XSS".



Please use CVE-2012-2151 for SPIP prior to 1.9.2o, 2.0.18 et 2.1.13
xss vulns.

- -- 
Kurt Seifried Red Hat Security Response Team (SRT)
PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQIcBAEBAgAGBQJPoDmGAAoJEBYNRVNeJnmT96EP/3ZtmBqYNBk+OtUBDUZtivCK
2gqjJjSZNhPTod3KNSVTLwVeG7S5fZ1Isct0kbNc0bAf8ww0N9xK4QsvSBSpAEiO
y9Zo0EcBGNhbaVKPdQS9b1n0bC0ZUbVpIA7MScYRBBUnEBrBSP1zSn551XRgMpYE
RCDZkYXEfGkvZUviUnrC9e38mxB7k/jr7tV+T/UVAR3LUjhraPNZTPckhUp9XqA/
3H0z9ik8AHe7aT3Xo11FM837eJCRdoENzxCXiAphz4qgCUnt3NGWbUrdHKyDtq7W
bMpcVCprmy0QmXMG0BWJXpscpH1SIcROC35OdApAySrPh2vmivM0L3e2yFrq/cul
C/YFPCjJsdd53T7bZnpaeQchvSAVnHkrowyASyhF/RlBf/i8oewTnefmWjYKOpsQ
2Oheu6len/cuCK2/0H+xjmFlQmlQDNa6smO9Q5PYn95AKzRKkdHRiRiRO0FTbIy1
BVMLRCq0v+/Mg83DaJB1G7aqE6cIZEgyuJj/wc8tUDpd3X/4WkEJx8OEGKtH7aoc
/nPrNZNpCcCLE5kekI5DgBN5DWX0gEtowRPdbgRG9ecevsJx8jsEAhhv43v6VrYo
uCNKl6EIxONpIGUUTyEuxXhpZcpP5/o++GuPB97XGo90Jqsq62J2n//S18PjOJ7F
3eE/1O1YFyaG0fwY5WaB
=epre
-----END PGP SIGNATURE-----
Previous By Date Next
Previous By Thread Next

Current thread: