cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
9ae851a904
openbsd-ports/www/phplist
History
sthen 4d751be561 SECURITY update to phplist 2.10.18 
"Desc: Input passed via the parameter 'sortby' is not properly
sanitised before being returned to the user or used in SQL queries.
This can be exploited to manipulate SQL queries by injecting
arbitrary SQL code. The param 'num' is vulnerable to a XSS issue
where the attacker can execute arbitrary HTML and script code in
a user's browser session in context of an affected site."

Security issues require admin login.
2012-06-16 11:37:20 +00:00
..
patches zap stray ?> caused by "No newline at end of file" in patch 2011-12-15 10:14:05 +00:00
pkg fix 6-year-old vi typo. 2011-12-15 09:54:53 +00:00
distinfo SECURITY update to phplist 2.10.18 2012-06-16 11:37:20 +00:00
Makefile SECURITY update to phplist 2.10.18 2012-06-16 11:37:20 +00:00