CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2021/05/03 07:02:15
Modified files:
www/moinmoin : Tag: OPENBSD_6_9 Makefile distinfo
www/moinmoin/pkg: Tag: OPENBSD_6_9 PLIST
Log message:
update to moinmoin-1.9.11, from wen heping. includes fixes for the
following problems:
- An attacker who can upload attachments to the wiki can use this to
achieve remote code execution.
- An attacker with write permissions can upload an SVG file that
contains malicious javascript. This javascript will be executed in a
user's browser when the user is viewing that SVG file on the wiki.
