Alerts This Week
Warning Icon 1 540
Alerts This Week
Warning Icon 1 540

Gentoo: GLSA 202310-15 Moderate: Drupal XSS Vulnerability Addressed

gentoo
Calendar Grey September 16, 2004
Dist Gentoo Esm H88
Security Alert GLSA 200409-23 addressing CSRF vulnerabilities in phpGroupWare's forums. Patch advised to reduce potential threats.
The phpGroupWare software contains a cross site scripting vulnerability in the wiki module.

Summary

Gentoo Linux Security Advisory GLSA 200409-22 https://security.gentoo.org/ Severity: Normal Title: phpGroupWare: XSS vulnerability in wiki module Date: September 16, 2004 Bugs: #63063 ID: 200409-22

Synopsis ======= The phpGroupWare software contains a cross site scripting vulnerability in the wiki module.
Background ========= phpGroupWare is a web-based suite of group applications including calendar, todo-list, addressbook, email, wiki, news headlines, and a file manager.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-apps/phpgroupware < 0.9.16.003 >= 0.9.16.003
========== Due to an input validation error, the wiki module in the phpGroupWare suite is vulnerable t...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo software update phpgroupware xss attack risk wiki module

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns


Warning: Undefined array key "advisory_info" in /var/www/www.linuxsecurity.com-443/html/tmp/regularlabs/custom_php/3342998_4c9dbbdde36eef04251a4ced7eac4df9 on line 11

Topics%20covered

Topics Covered

security advisory gentoo software update phpgroupware xss attack risk wiki module

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Related News

Your message here