oss-sec mailing list archives

CVE Request: Shaarli: Several XSS in index.php

From: Salvatore Bonaccorso <carnil () debian org>
Date: Tue, 1 Apr 2014 06:52:08 +0200

Hi

Multiple cross-site scripting vulnerabilities were reported in
Shaarli, which can be found in upstream issue[1].

 [1] https://github.com/sebsauvage/Shaarli/issues/134

The issues were fixed upstream by commit
53da201749f8f362323ef278bf338f1d9f7a925a [2].

 [2] https://github.com/sebsauvage/Shaarli/commit/53da201749f8f362323ef278bf338f1d9f7a925a

Could a CVE be assigned for this flaw? (One is sufficient, as it is one
reporter and one affected file?).

Regards,
Salvatore

Current thread:

CVE Request: Shaarli: Several XSS in index.php Salvatore Bonaccorso (Mar 31)
- Re: CVE Request: Shaarli: Several XSS in index.php cve-assign (Apr 01)