oss-sec mailing list archives
Re: CVE request: XSS issues in Koha
From: cve-assign () mitre org
Date: Sat, 3 Jan 2015 18:32:26 -0500 (EST)
On Sat, 27 Dec 2014, Chris Cormack wrote:
As a current release maintainer for Koha I would like to request a CVE number for an XSS vulnerability that has been address by Koha releases 3.16.6 and 3.18.2 The bug fixed is http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=13425 There is an xss vulnerability in 3.16, 3.18 and master in the opac and intranet facets
Use CVE-2014-9446. --- CVE assignment team, MITRE CVE Numbering Authority M/S M300 202 Burlington Road, Bedford, MA 01730 USA [ PGP key available through http://cve.mitre.org/cve/request_id.html ]
Current thread:
- Re: CVE request: XSS issues in Koha cve-assign (Jan 03)