[Tickets #9191] Re: XSS Vulnerability
noreply at bugs.horde.org
noreply at bugs.horde.org
Wed Oct 12 15:31:36 UTC 2022
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: https://bugs.horde.org/ticket/9191
------------------------------------------------------------------------------
Ticket | 9191
Updated By | englich10 at gmail.com
Summary | XSS Vulnerability
Queue | Gollem
Version | 1.1.1
Type | Bug
State | Resolved
Priority | 3. High
Milestone |
Patch | 1
Owners | Michael Slusarz
+New Attachment | PhonePe- User Impersonation.pdf
------------------------------------------------------------------------------
englich10 at gmail.com (2022-10-12 15:31) wrote:
> Git master fix:
> http://lists.horde.org/archives/commits/2010-August/004747.html
>
> This has been fixed in 1.1.2, although slightly different from your
> patch - we instead use the Horde::fatal() function which is the
> preferred way of reporting these kind of errors anyway.
>
> Thank you for your report.
englich10 at gmail.com (2022-10-12 15:31) uploaded: PhonePe- User
Impersonation.pdf
https://bugs.horde.org/h/services/download/?app=whups&actionID=download_file&file=PhonePe-%20User%20Impersonation.pdf&ticket=9191&fn=%2FPhonePe-%20User%20Impersonation.pdf
More information about the bugs
mailing list