mailing list archives
CVE Request: XSS in smokeping / start and end time fields not filtered
From: Salvatore Bonaccorso <carnil () debian org>
Date: Sat, 20 Jul 2013 09:13:44 +0200
There is another XSS fix which was done after the 2.6.9 release for
In  Steven Chamberlain pointed out that in 2.6.9 upstrem the
"start" and "end" time fields are still not filtered.
Tobi Oetiker fixed this in a commit following the 2.6.9 release at
. But this version is no yet released.
Does this also needs a separate CVE, as a subsequent fix to the 2.6.9
- CVE Request: XSS in smokeping / start and end time fields not filtered Salvatore Bonaccorso (Jul 20)