subject:"Bug#441205\: CVE\-2007\-4724 XSS in cal2.jsp"

Bug#441205: CVE-2007-4724 XSS in cal2.jsp

2007-10-06 Thread Michael Koch

On Fri, Sep 07, 2007 at 02:42:13PM +0200, Nico Golde wrote: > Package: tomcat5-webapps > Version: 5.0.30-12 > Severity: minor > Tags: security > > Hi, > a CVE[0] has been issued against your package. > CVE-2007-4724: > Cross-site request forgery (CSRF) vulnerability in cal2.jsp > in the calendar

Bug#441205: CVE-2007-4724 XSS in cal2.jsp

2007-09-07 Thread Nico Golde

Package: tomcat5-webapps Version: 5.0.30-12 Severity: minor Tags: security Hi, a CVE[0] has been issued against your package. CVE-2007-4724: Cross-site request forgery (CSRF) vulnerability in cal2.jsp in the calendar examples application in Apache Tomcat 4.1.31 allows remote attackers to add eve