[Bug 1133194] VUL-1: CVE-2019-11454: monit: Persistent cross-site scripting (XSS) in http/cervlet.c in Tildeslash Monit before 5.25.3 allows a remote unauthenticated attacker to introduce arbitrary JavaScript via manipulation of an unsanitized user field of the

11 Jul 2019

      http://bugzilla.suse.com/show_bug.cgi?id=1133194
http://bugzilla.suse.com/show_bug.cgi?id=1133194#c2

Marcus Meissner  changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|RESOLVED                    |REOPENED
            Version|Leap 42.3                   |Leap 15.0
         Resolution|WONTFIX                     |---

--- Comment #2 from Marcus Meissner  ---
15.0 and 15.1 still unfixed

-- 
You are receiving this mail because:
You are on the CC list for the bug.

bugzilla_noreply＠novell.com

tags

participants (1)