XSS vulnerability found from http://http://qa.debian.org

Thu, 01 May 2014 04:38:29 -0700 

Hello,

I found XSS vulnerability from http://qa.debian.org/ service. Here is proof of
concept:

http://qa.debian.org/developer.php?login=%27%22%3E%3Cmarquee%3E&comaint=yes

Please reply when this has been fixed, thank you.

---
Henri Salo

Attachment: signature.asc
Description: Digital signature

Reply via email to