Date: Tue, 8 Jul 2008 13:21:06 +0200 From: Hanno Böck <hanno@...eck.de> To: oss-security@...ts.openwall.com Subject: Re: CVE request: moodle xss in < 1.8.5 Am Sonntag 06 Juli 2008 schrieb Nico Golde: > Hi Hanno, > > * Hanno Böck <hanno@...eck.de> [2008-07-06 19:04]: > > http://docs.moodle.org/en/Release_Notes#Moodle_1.8.5 > > * KSES related XSS security vulnerability fixed > > This should be CVE-2008-1502: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1502 is about egroupware. I found no cve related to moodle 1.8.4. -- Hanno Böck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber/Mail: hanno@...eck.de Download attachment "signature.asc " of type "application/pgp-signature" (198 bytes)
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.