Bug#787762: dolibarr: CVE-2015-3935: dolibarr HTML injection

Moritz Mühlenhoff Mon, 20 Jul 2015 13:28:03 -0700

On Thu, Jun 04, 2015 at 09:27:53PM +0200, Salvatore Bonaccorso wrote:
> Source: dolibarr
> Version: 3.5.5+dfsg1-1
> Severity: important
> Tags: security upstream fixed-upstream
> 
> Hi,
> 
> the following vulnerability was published for dolibarr.
> 
> CVE-2015-3935[0]:
> HTML Injection
> 
> If you fix the vulnerability please also make sure to include the
> CVE (Common Vulnerabilities & Exposures) id in your changelog entry.


What's the status? This bug is more than six weeks old...

Cheers,
        Moritz

> 
> For further information see:
> 
> [0] https://security-tracker.debian.org/tracker/CVE-2015-3935
> [1] https://github.com/Dolibarr/dolibarr/issues/2857
> [2] 
> https://github.com/Dolibarr/dolibarr/commit/f32215a9fc3abfa69c34d4cf65a044b60ff8e93a
> 
> Regards,
> Salvatore
> 
> 


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#787762: dolibarr: CVE-2015-3935: dolibarr HTML injection

Reply via email to