Re: rapport Vulnerability on ur site
On Sat, Mar 26, 2016 at 03:10:46PM +0000, mohammed souaidi wrote:
>hi i'm M0hamm33d white hat
>dear admin u have problem on
>
>POST DATA :"><ScRiPt >prompt(995041)</ScRiPt>
>
>just close "> and past any code u get Xss
>
>http://cdimage-search.debian.org/?search_area=release&type=simple&query="><ScRiPt
>>prompt(995041)</ScRiPt>&Search=Search&.cgifields=search_area&.cgifields=type
Hi,
Thanks very much for your report - I've just applied a fix. Please let
us know if you find any more issues, it's really appreciated.
--
Steve McIntyre, Cambridge, UK. steve@einval.com
"Arguing that you don't care about the right to privacy because you have
nothing to hide is no different than saying you don't care about free
speech because you have nothing to say."
-- Edward Snowden
Reply to: