Summary: | www-apps/tikiwiki: <1.9.3.4 SQL injection and multiple XSS (CVE-2006-2635) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Raphael Marichez (Falco) (RETIRED) <falco> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | web-apps |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://seclists.org/lists/bugtraq/2006/Jun/0345.html | ||
Whiteboard: | B3 [glsa] Falco | ||
Package list: | Runtime testing required: | --- |
Description
Raphael Marichez (Falco) (RETIRED)
2006-06-13 16:56:46 UTC
Hello web-apps, please work again on tikiwiki :/ 1.9.3.4 is out and corrects the SQL injection vulnerability and XSS issues. Thanks in advance 1.9.4 in CVS Thanks rl03 ppc team, please test and mark stable, thank you ppc stable I would vote yes. Yes. (/sigh) because of sql injection, (and not because of the xss issue), i vote yes. GLSA will have to be combined with bug 134483 GLSA 200606-29 |