oss-sec mailing list archives

CVE-request: galette sql injection

From: Johan Cwiklinski <mailings () x-tnd be>
Date: Thu, 10 May 2012 21:06:42 +0200

Hello,

Versions 0.63x of galette (out-of-date but mostly used versions for now)
have an sql injection vulnerability.

Could a CVE be assigned for this vulnerability?

This issue has been reported on project's tracker:
http://redmine.ulysses.fr/issues/250

The issue has been fixed
(http://redmine.ulysses.fr/projects/galette/repository/revisions/8c13ec159ba),
a new release and an official announcment from the project will come
very soon.

Thank you!

-- 
Johan Cwiklinski

Current thread:

CVE-request: galette sql injection Johan Cwiklinski (May 10)
- Re: CVE-request: galette sql injection Kurt Seifried (May 10)