https://bugzilla.wikimedia.org/show_bug.cgi?id=24199
--- Comment #10 from Bawolff <[email protected]> 2012-08-08 12:09:10 UTC --- (In reply to comment #9) > (In reply to comment #8) > > I do not want to publicly disclose the > > exploit. > > Please file a bug under the "Security" product about that so its private and > only visible to our security group. Note, its not exactly secret that their are open XSS issues with this extension. They are very obvious when you look at the code (hence the giant notice on the extension description page). I somewhat doubt the "Security" group plans to rewrite the entire extension. -- Configure bugmail: https://bugzilla.wikimedia.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
