#1019: CVE-2009-0417: Cross-site scripting vulnerability in handling of incoming
URLs
----------------------+-----------------------------------------------------
Reporter: david | Owner: david
Type: defect | Status: closed
Priority: highest | Milestone: 0.11.6
Component: request | Version: 0.11.5
Severity: critical | Resolution: fixed
Keywords: | Has_patch: 0
----------------------+-----------------------------------------------------
Comment(by david):
FYI, this is a [http://cwe.mitre.org/data/definitions/79.html Type 1:
Reflected XSS (or Non-Persistent)]
--
Ticket URL: <http://trac.agavi.org/ticket/1019#comment:9>
Agavi <http://www.agavi.org/>
An MVC Framework for PHP5
_______________________________________________
Agavi Tickets Mailing List
[email protected]
http://lists.agavi.org/mailman/listinfo/tickets
