Dear all, Please take note of the following Cross-Site Scripting (XSS) vulnerability found in Invenio v1.2/v1.1:
https://github.com/inveniosoftware/invenio/pull/3894 Note, that Invenio v1.x has reached end-of-life and will not receive any further development nor security fixes, and hence above fix will not be officially released. See https://invenio.readthedocs.io/en/latest/releases/v1.html Best regards, Lars --- Lars Holm Nielsen CERN, IT Department Tel: +41 22 76 79182 | Cel: +33 666 37 16 57 | Twitter: @larshankat | Skype: larsholm-hankat http://inveniosoftware.org | https://zenodo.org
