Bug#346255: Javascript and HTML injection on http://qa.debian.org/developer.php

severity 346255 grave thanks Re: Frederik Reiss in <[EMAIL PROTECTED]> > Severity: critical > Justification: root security hole Bullshit. Downgrading. Christoph -- [EMAIL PROTECTED] | http://www.df7cb.de/ signature.asc Description: Digital signature

Bug#346255: Javascript and HTML injection on http://qa.debian.org/developer.php

severity 346255 minor thanks Hello Frederik, On Fri, January 6, 2006 18:18, Frederik Reiss wrote: > on http://qa.debian.org/developer.php it is possible to inject javascript > and html tags: > > http://qa.debian.org/developer.php?excuse=%3Cscript%20type=text/javascript%3Ealert(this)%3C/script%3E

Bug#346255: Javascript and HTML injection on http://qa.debian.org/developer.php

Package: qa.debian.org Severity: critical Tags: security Justification: root security hole on http://qa.debian.org/developer.php it is possible to inject javascript and html tags: http://qa.debian.org/developer.php?excuse=%3Cscript%20type=text/javascript%3Ealert(this)%3C/script%3E -- System In