Project

General

Profile

Actions

Bug #3405

closed

Cross-Site Scripting Vulnerability in system_firmware_check.php

Added by Ian Gallagher over 7 years ago. Updated about 6 years ago.

Status:
Rejected
Priority:
Urgent
Assignee:
-
Category:
Upgrade
Target version:
-
Start date:
01/22/2014
Due date:
% Done:

0%

Estimated time:
1.00 h
Plus Target Version:
Release Notes:
Affected Version:
All
Affected Architecture:
All

Description

Filing this as a new bug so it doesn't fall under the cracks - the unvalidated input bug in #2952 has been verified to be an exploitable XSS vulnerability. Complete details are present within the new comments of that bug. Thanks!

Actions #1

Updated by Chris Buechler over 7 years ago

  • Assignee deleted (Scott Ullrich)
  • Target version set to 2.1.1
Actions #2

Updated by Chris Buechler over 7 years ago

  • Status changed from New to Rejected

duplicate of #2952, we'll keep it on that one.

Actions #3

Updated by Chris Buechler about 6 years ago

  • Target version deleted (2.1.1)
Actions

Also available in: Atom PDF