oss-sec mailing list archives

Re: Drupal contrib CVE

From: Kurt Seifried <kseifried () redhat com>
Date: Wed, 29 May 2013 17:52:54 -0600

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 05/29/2013 05:00 PM, Forest Monsen wrote:

A late one just came out. I'd like to request a CVE for:

SA-CONTRIB-2013-050 - Webform - Cross Site Scripting (XSS) 
https://drupal.org/node/2007460

Thanks!

Forest


Better late than running around in circles with your hair on fire =).

Please use CVE-2013-2129 for this issue.

- -- 
Kurt Seifried Red Hat Security Response Team (SRT)
PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (GNU/Linux)
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=0mjM
-----END PGP SIGNATURE-----

Current thread:

Drupal contrib CVE Forest Monsen (May 29)
- Re: Drupal contrib CVE Kurt Seifried (May 29)