[pLog-svn] xss in 1.2.7
Reto Hugi
plog at hugi.to
Sat May 3 09:27:40 EDT 2008
On 05/03/2008 03:19 PM, Jon Daley wrote:
> Nice for them to not notify us, and just let us find it on the security
> sites:
>
> http://www.securityfocus.com/archive/1/491550
>
>
I noticed that too, just a minute ago. Looks like we've got the same
Google Alert ;)
There are even more search fields around, that have no filter. But for
example admineditcommentsachtion is filtering the searchTerms.
Will you have time to fix it or shall I do it? (I'm away for today, but
could do it tomorrow).
cheers, reto
More information about the pLog-svn
mailing list