Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Tue, 21 Dec 2010 19:41:22 -0500 (EST)
From: Josh Bressers <bressers@...hat.com>
To: oss-security@...ts.openwall.com
Cc: Steve Christey <coley@...us.mitre.org>
Subject: Re: CVE Request: MyBB XSS bugs



----- Original Message -----
> MyBB has some XSS bugs:
> 
> http://blog.mybb.com/2010/12/15/mybb-1-6-1-release-1-4-14-update/
> 

As best as I can tell, one ID should work for "multiple XSS flaws".
If someone knows a reason to split, we can do that in the future.

Please use CVE-2010-4522.

Thanks.

-- 
    JB

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ