oss-sec mailing list archives
CVE request: Drupal Data-module multiple vulnerabilities
From: Henri Salo <henri () nerv fi>
Date: Sun, 24 Jul 2011 18:23:27 +0300
These issues does not have CVE-identifiers. Could we get one? http://seclists.org/fulldisclosure/2011/Feb/219 I asked from Justin Klein Keane and he wasn't aware of CVE-identifier. I think this needs identifier even this is an alpha release as this module is used by some production instances. If I am correct two identifiers should be enough. One for XSS and another for SQL injections. Discussion about the issue: http://drupal.org/node/1056470 Best regards, Henri Salo
Current thread:
- CVE request: Drupal Data-module multiple vulnerabilities Henri Salo (Jul 24)
- Re: CVE request: Drupal Data-module multiple vulnerabilities Josh Bressers (Jul 26)