[
Date Prev
][
Date Next
] [
Thread Prev
][
Thread Next
] [
Date Index
] [
Thread Index
]
Re: XSS in Manpage Search
To
: Gary McAdam <
gpmcadam@gmail.com
>
Cc
:
debian-www@lists.debian.org
Subject
: Re: XSS in Manpage Search
From
: Javier Fernandez-Sanguino <
jfs@computer.org
>
Date
: Thu, 23 Jul 2015 22:45:18 +0200
Message-id
: <
[🔎]
CAB9B7UvBv=tQA_fCfkexJHNeEY-yZettON3139NQdiYtKrxTwA@mail.gmail.com
>
In-reply-to
: <
[🔎]
0F4B1F99-DD3E-435A-99CF-CD6C4863DF6D@googlemail.com
>
References
: <
[🔎]
0F4B1F99-DD3E-435A-99CF-CD6C4863DF6D@googlemail.com
>
On 17 July 2015 at 22:38, Gary McAdam
<
gpmcadam@gmail.com
>
wrote:
Hi,
I found an XSS vulnerability on the manage search page.
Sorry for the delay. I've committed a fix to the server just now. I would appreciate if you could try it out and stress test it a little bit.
I have yet to commit the changes to SVN, as my network connection is not great, but the fixed code should be available in the DDP SVN [1] soon.
Best regards
Javier
[1]
https://anonscm.debian.org/viewvc/ddp/
Reply to:
debian-www@lists.debian.org
Javier Fernandez-Sanguino (on-list)
Javier Fernandez-Sanguino (off-list)
References
:
XSS in Manpage Search
From:
Gary McAdam <gpmcadam@gmail.com>
Prev by Date:
Re: Updating the New Members Front Desk delegation
Next by Date:
Bad link on http://cdimage.debian.org
Previous by thread:
XSS in Manpage Search
Next by thread:
website for jessie release notes is wrong.
Index(es):
Date
Thread