gnatsweb/755: XSS vuln.

gnats-prs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

gnatsweb/755: XSS vuln.

From:	bug-gnats
Subject:	gnatsweb/755: XSS vuln.
Date:	Sat, 19 May 2007 07:56:35 -0500 (CDT)

>Number:         755
>Category:       gnatsweb
>Synopsis:       XSS vuln.
>Confidential:   no
>Severity:       non-critical
>Priority:       high
>Responsible:    unassigned
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Sat May 19 07:56:35 -0500 2007
>Originator:     r0t
>Release:        XSS vuln
>Organization:
-unsecure systems-  http://pridels.blogspot.com/
>Environment:
>Description:
in fast check i found one XSS bug "database" parameter  in isnt properly 
santisided "gnatsweb.pl"
>How-To-Repeat:
>Fix:
>Notify-List:    
>Unformatted:

[Prev in Thread]

Current Thread

[Next in Thread]

gnatsweb/755: XSS vuln., bug-gnats <=

Prev by Date: gnats/754: testing Gnats
Next by Date: gnats/756: The 'time' command doesn't accept any command-line options
Previous by thread: gnats/754: testing Gnats
Next by thread: gnats/756: The 'time' command doesn't accept any command-line options
Index(es):
- Date
- Thread