oss-sec mailing list archives

Re: CVE request: Zenphoto 1.4.5.4


From: cve-assign () mitre org
Date: Mon, 30 Dec 2013 11:20:48 -0500 (EST)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

A) Cross Site Scripting in mergedRSS.php [Impact: 3/5]

Use CVE-2013-7241.


B) Sql Injection in wordpress_import.php [Impact: 1/5]

Use CVE-2013-7242.

- -- 
CVE assignment team, MITRE CVE Numbering Authority
M/S M300
202 Burlington Road, Bedford, MA 01730 USA
[ PGP key available through http://cve.mitre.org/cve/request_id.html ]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (SunOS)

iQEcBAEBAgAGBQJSwZ0jAAoJEKllVAevmvms9PkIAICNVU0zW1Pp1A8O2Sto1wG1
NFGNe/TMB9H0pOlsorxhg5u/11V4rX0iHSEETu5TsX1W84cVWAFrZ615vP7AEF7w
7pjPWYvV8HFyBUagK2fXxE8lm/XLztPWlQsd4DEMeseg5I0fwEqpsgXSk+afw87x
V1x6AcPViaxE2H6MQfMHLmoAEADFXwAySVITI6QquipyR8Z20YrQiIkDZl2+KY5h
7M6x+jPduGD9gj/8f00Zbhs0J0pTTH0vsUHaUahRej+8DwsNoSqPsjqy3LVVd3N/
PUXr2gm/8rAtPHJV2SnUHxcesnJtrVnxvydThqfVV0I4kPKfP5GBjaXafnldy34=
=OKfh
-----END PGP SIGNATURE-----


Current thread: