oss-sec mailing list archives

Re: CVE request: Reflected XSS in Nibbleblog <= v4.0.1

From: Henri Salo <henri () nerv fi>
Date: Sun, 28 Dec 2014 23:20:37 +0200

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Advisory: http://seclists.org/fulldisclosure/2014/Nov/38
Vendor blog post: http://blog.nibbleblog.com/post/nibbleblog-v4.0.2-coffee/


CVE-2014-8996 has been assigned for this issue.

- -- 
Henri Salo
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlSgdCUACgkQXf6hBi6kbk8eoQCgl0UDgkXdPOIVKrjDKpVxbWS2
yLYAnjXkJUaZR1e05m0iE/bX64hOXxGR
=Qp2i
-----END PGP SIGNATURE-----

Current thread:

CVE request: Reflected XSS in Nibbleblog <= v4.0.1 Henri Salo (Dec 10)
- Re: CVE request: Reflected XSS in Nibbleblog <= v4.0.1 Henri Salo (Dec 28)