Cheers,
Stefan -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
The reported XSS vulnerability has been fixed in SVN revision 1719 of
elog by not allowing HTML mode by default. This mode has to be enabled
explicitly by setting "Allowed encoding = 7".
- Bug#389361: XSS vulnerability fixed Stefan Ritt
- Bug#389361: XSS vulnerability fixed Recai Oktaş
