*** This bug is a security vulnerability *** You have been subscribed to a public security bug by Seth Arnold (seth-arnold):
Hi! I noticed that phpldapadmin versions up to v1.2.5 has a stored cross-site scripting vulnerability when confirming to change a field. I have attached details in this Github issue: https://github.com/leenooks/phpLDAPadmin/issues/130 The maintainer noted that 1.2.6 is not vulnerable, but I wanted to report upstream in case it is assigned here. ** Affects: phpldapadmin (Ubuntu) Importance: Undecided Status: New -- phpldapadmin 1.2.5 vulnerable to stored cross site scripting https://bugs.launchpad.net/bugs/1906474 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to the bug report. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
