[Tickets #14857] Re: Multiple XSS security vulnerabilities
noreply at bugs.horde.org
noreply at bugs.horde.org
Fri Sep 28 17:04:43 UTC 2018
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: https://bugs.horde.org/ticket/14857
------------------------------------------------------------------------------
Ticket | 14857
Updated By | Michael Rubinsky <mrubinsk at horde.org>
Summary | Multiple XSS security vulnerabilities
Queue | Horde Groupware
Version | 5.2.22
Type | Bug
-State | Assigned
+State | Resolved
Priority | 3. High
Milestone |
Patch |
Owners | Michael Rubinsky
------------------------------------------------------------------------------
Michael Rubinsky <mrubinsk at horde.org> (2018-09-28 17:04) wrote:
> CVE-2017-17781 was published in another blog post. I missed it myself, sorry.
>
> https://code610.blogspot.com/2017/12/modus-operandi-horde-52x.html
As far as 17781 goes, I can't verify any sql injection vulns. I've
been in contact with the reporter, but have received no information
that suggests there are any sql injection vuln in the areas specified
in CVE-2017-17781.
I consider these issues closed.
More information about the bugs
mailing list