oss-sec mailing list archives
Re: CVE request: serendipity before 1.7.3 XSS
From: cve-assign () mitre org
Date: Sun, 1 Sep 2013 12:23:46 -0400 (EDT)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Serendipity blog software contains an XSS in the shipped htmlarea-code for spell checking. http://osvdb.org/87395 http://blog.s9y.org/archives/250-Serendipity-1.7.3-released.html https://github.com/s9y/Serendipity/commit/d7dbe7757371c7f25a39463d1b924604785ae475
Use CVE-2013-5670. - -- CVE assignment team, MITRE CVE Numbering Authority M/S M300 202 Burlington Road, Bedford, MA 01730 USA [ PGP key available through http://cve.mitre.org/cve/request_id.html ] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (SunOS) iQEcBAEBAgAGBQJSI2aJAAoJEGvefgSNfHMdbWgH/1gF/pZXsQ6sHgUg0UXHc5GZ 0qZUQS2zmlKoNGl/hboXfNjOIv6VwsJ6g0IHMOKfg7NCyfeq33ELTXd7V1fQxAx+ 9zeXWHrnLVmK/QIksycsZFACqGcws6eJhEDCNUL2u9l4yKkSmwCF7/LnGaBDOOr7 H7QcA3pRJnvxlN8Ps8sOUaWgB0GJr6Bjo7N6Z/e7muJJlz/fbqX40oF/kLopRkba AiCif4q0PwR8tmGoU2lk8a8ZpVQtP3o/N22Lke/8qmio81fWPos4bwn8obRBygrp p3wPJq+v+zk8bmBCdxnXWN9ECwxzC5BEXm+WbAq6G9rVyzzjrN3Q9Dj05ygJiJg= =Cvft -----END PGP SIGNATURE-----
Current thread:
- CVE request: serendipity before 1.7.3 XSS Hanno Böck (Aug 31)
- Re: CVE request: serendipity before 1.7.3 XSS cve-assign (Sep 01)