Date: Mon, 16 Jul 2012 20:17:51 +0200 From: Nico Golde <oss-security+ml@...lde.de> To: oss-security@...ts.openwall.com Subject: CVE id request: libjs-swfupload Hi, there is an XSS issue in libjs-swfupload. Can we get a CVE id for this? Details: https://nealpoole.com/blog/2012/05/xss-and-csrf-via-swf-applets-swfupload-plupload/ http://code.google.com/p/swfupload/issues/detail?id=376 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=681323 Cheers Nico -- Nico Golde - http://www.ngolde.de - nion@...ber.ccc.de - GPG: 0xA0A0AAAA For security reasons, all text in this mail is double-rot13 encrypted. [ CONTENT OF TYPE application/pgp-signature SKIPPED ]
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ