Actions
Bug #3405
closedCross-Site Scripting Vulnerability in system_firmware_check.php
Status:
Rejected
Priority:
Urgent
Assignee:
-
Category:
Upgrade
Target version:
-
Start date:
01/22/2014
Due date:
% Done:
0%
Estimated time:
1.00 h
Plus Target Version:
Release Notes:
Affected Version:
All
Affected Architecture:
All
Description
Filing this as a new bug so it doesn't fall under the cracks - the unvalidated input bug in #2952 has been verified to be an exploitable XSS vulnerability. Complete details are present within the new comments of that bug. Thanks!
Updated by Chris Buechler almost 11 years ago
- Assignee deleted (
Scott Ullrich) - Target version set to 2.1.1
Updated by Chris Buechler almost 11 years ago
- Status changed from New to Rejected
duplicate of #2952, we'll keep it on that one.
Actions