Date: Sat, 27 Dec 2014 16:30:05 +1300 From: Chris Cormack <chris@...ballofwax.co.nz> To: oss-security@...ts.openwall.com Subject: CVE request: XSS issues in Koha Hi All As a current release maintainer for Koha I would like to request a CVE number for an XSS vulnerability that has been address by Koha releases 3.16.6 and 3.18.2 The bug fixed is http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=13425 There is an xss vulnerability in 3.16, 3.18 and master in the opac and intranet facets Thank you Chris
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.