Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Thu, 12 Jun 2008 09:55:50 +0200 (CEST)
From: "Thijs Kinkhorst" <>
Subject: CVE id request: TYPO3-20080611-1: Multiple vulnerabilities in 
     TYPO3 Core


Does anyone already have a CVE id, or could I get one (probably two)
assigned for, the following TYPO3 security announcement:

Vulnerability #1: Default value of fileDenyPattern allows arbitrary code
execution on Apache
Vulnerability #2: allows Cross Site Scripting


Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.