mailing list archives
Re: PHP Code Snippet Library Multiple Cross-Site Scripting (XSS) Vulnerabilities
From: stuartc1 () securityfocus com, hotmail () securityfocus com (at), com () securityfocus com (dot)
Date: 26 Jul 2005 09:37:32 -0000
This is a bugus bug report, I've tested this on both v0.8 and v0.9 and no problems.
Please remove this bug as it gives a bad name to the project.
It is possible to pass fake variables (as with most systems), but not executable code!! which is not a security issue.
If I'm missing something, please email me with details info. But as far as I can see this is a bugus report.
- Re: PHP Code Snippet Library Multiple Cross-Site Scripting (XSS) Vulnerabilities at (Jul 28)