subject:"Bug#449103\: CVE\-2007\-5728\: Cross\-site scripting \(XSS\) vulnerability"

Bug#449103: CVE-2007-5728: Cross-site scripting (XSS) vulnerability

2007-11-05 Thread Nico Golde

Hi,
please just package the current upstream version  (4.1.3) 
which contains fixes for this.
Kind regards
Nico

-- 
Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.


pgpU7nKC04b71.pgp
Description: PGP signature

Bug#449103: CVE-2007-5728: Cross-site scripting (XSS) vulnerability

2007-11-02 Thread Steffen Joeris

Package: phppgadmin
Severity: important
Tags: security

Hi Isaac

Could you please check, if the following CVE[0] affects the debian
versions?

CVE-2007-5728:

Cross-site scripting (XSS) vulnerability in phpPgAdmin 3.5 to 4.1.1, and
possibly 4.1.2, allows remote attackers to inject arbitrary web script
or HTML via certain input available in PHP_SELF in (1) redirect.php,
possibly related to (2) login.php, different vectors than CVE-2007-2865.


Thanks for your efforts.

Cheers
Steffen

[0]: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5728



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#449103: CVE-2007-5728: Cross-site scripting (XSS) vulnerability

Bug#449103: CVE-2007-5728: Cross-site scripting (XSS) vulnerability

2 matches

Site Navigation

Mail list logo

Footer information