Re: [oss-security] CVE request: phorum < 5.2.15 backend XSS

From: Josh Bressers <bressers_at_nospam>
Date: Tue May 18 2010 - 19:17:19 GMT
To: oss-security@lists.openwall.com

----- "Steven M. Christey" <coley@linus.mitre.org> wrote:
> On Tue, 18 May 2010, Josh Bressers wrote:
> >
> > Does someone have some additional details for this? I don't see enough
> > information for me to assign a CVE id.
>
> Welcome to daily life in CVE.
>
> In this case we have an announcement from the vendor alluding to at least
> one security problem, and a fix for it. This is (unfortunately)
> sufficient for us to assign a CVE to it.
>

Good enough for me:
CVE-2010-1629 phorum < 5.2.15 backend XSS

Thanks

-- JB

This message: [ Message body ]
Next message: Josh Bressers: "Re: [oss-security] CVE request: phpbb 3.0.7 and before 3.0.5"
Previous message: Dan Rosenberg: "Re: [oss-security] kernel: btrfs: check for read permission on src file in the clone ioctl"
In reply to: Steven M. Christey: "Re: [oss-security] CVE request: phorum < 5.2.15 backend XSS"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]