** Description changed: On 21 August 2021, it was publicly reported a little XSS vulnerability in the phpLiteAdmin script packaged in Ubuntu. The following versions of the phpliteadmin package are affected. - * 1.9.8.2-1 echoes GET parameter newRows to HTML with no properly - escaping nor conversion. - * 1.9.7.1-1ubuntu0.1 does similar with POST parameter num. + * 1.9.8.2-1 echoes GET parameter newRows to HTML with no properly + escaping nor conversion. + * 1.9.7.1-1ubuntu0.1 does similar with POST parameter num. + + Upstream bug report: + https://bitbucket.org/phpliteadmin/public/issues/399/xss-vulnerability
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1964710 Title: XSS vulnerability in row_create To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/phpliteadmin/+bug/1964710/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
