CGI:IRC XSS issue (CVE-2011-0050) Feb 09 2011 11:41AM
David Leadbeater (dgl dgl cx)
Michael Brooks (Sitewatch) discovered an XSS issue in the nonjs
interface that allowed HTML injection via a crafted parameter.

0.5.10 is now available. This is actually just 0.5.9 with the
following fix:

- CVE-2011-0050: XSS in R param in nonjs interface


[ reply ]


Privacy Statement
Copyright 2010, SecurityFocus