[Tickets #6906] Re: The parameter 'object[name]' is not sanitized in the page '/horde/turba/add.php'
bugs at horde.org
bugs at horde.org
Fri Jun 13 14:58:13 UTC 2008
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: http://bugs.horde.org/ticket/6906
-----------------------------------------------------------------------
Ticket | 6906
Updated By | Chuck Hagenbuch <chuck at horde.org>
Summary | The parameter 'object[name]' is not sanitized
in the page
| '/horde/turba/add.php'
Queue | Turba
Version | 2.1.7
Type | Bug
State | Feedback
Priority | 2. Medium
Milestone |
Patch |
Owners |
-----------------------------------------------------------------------
Chuck Hagenbuch <chuck at horde.org> (2008-06-13 10:58) wrote:
your initial report was misleading about where the vulnerability is
(xss is a display problem, so add.php isn't the issue). we are
currently investigating.
More information about the bugs
mailing list