This bug was fixed in the package php-htmlpurifier -
4.0.0+dfsg1-1ubuntu0.1
---------------
php-htmlpurifier (4.0.0+dfsg1-1ubuntu0.1) lucid-security; urgency=low
* SECURITY UPDATE (LP: #582576).
* A vulnerability has been reported in HTML Purifier, which can be
exploited by malicious people to conduct cross-site scripting
attacks.
* CVE-2010-2479
-- Artur Rona <[email protected]> Wed, 24 Nov 2010 22:36:10 +0100
** Changed in: php-htmlpurifier (Ubuntu Lucid)
Status: Fix Committed => Fix Released
** Changed in: php-htmlpurifier (Ubuntu Karmic)
Status: Fix Committed => Fix Released
--
XSS in HTML purifier 3.0.0 and 4.0.0
https://bugs.launchpad.net/bugs/582576
You received this bug notification because you are a member of Ubuntu
Bugs, which is a direct subscriber.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
