Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Tue, 18 May 2010 13:16:51 -0400 (EDT)
From: Josh Bressers <>
Cc: coley <>
Subject: Re: CVE request: phorum < 5.2.15 backend XSS

----- "Hanno Böck" <> wrote:

> Release notes:
> "It also has some security fixes for another less important XSS where a
> user could "attack himself" with adding an invalid email address (thanks
> to Carlos Ghan for pointing out this issue), see the changelog below for
> details. "

Does someone have some additional details for this? I don't see enough
information for me to assign a CVE id.



Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.