Date: Wed, 17 Feb 2016 19:13:14 +0100 From: Manuel Mancera <sinkmanu@...il.com> To: oss-security@...ts.openwall.com Cc: security@...ian.org Subject: Re: CVE Request: graphite-web: open redirect Sorry, the email was sent with HTML format and with a wrong link, the link with the vulnerability is: https://github.com/graphite-project/graphite-web/issues/1441 Regards, On 17/02/16 18:55, Manuel Mancera wrote: > Hello, > > I found and reported an open redirect vulnerability in graphite-web. > Through this vulnerability an attacker could redirect to a legitimate user to a malicious website. > > https://github.com/graphite-project/graphite-web/issues/1441 > <https://blog.filippo.io/bleichenbacher-06-signature-forgery-in-python-rsa/> > > Can you assign a CVE for this issue? > > > Regards, > > Manuel Mancera
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.