oss-sec mailing list archives
CVE request: BigTree CMS SQL injection and reflected cross-site scripting vulnerabilities fixed in 4.2.12 / 4.1.16
From: Henri Salo <henri () nerv fi>
Date: Fri, 11 Nov 2016 21:43:27 +0200
Please assign CVE identifier for BigTree CMS SQL injection and reflected cross-site scripting vulnerabilities, thanks. Fixed in 4.2.12 / 4.1.16 Reported by Mehmet İnce in https://github.com/bigtreecms/BigTree-CMS/pull/256 Fixed in: https://github.com/bigtreecms/BigTree-CMS/commit/7e4b03f89dcf8dc3b0500347e877ddb7a766f23e https://github.com/bigtreecms/BigTree-CMS/commit/7260b84371c99e29576e8ee22eda7b36fc5da741 https://github.com/bigtreecms/BigTree-CMS/commit/50bfa22c5861657470803669a0283053d8b67338 -- Henri Salo
Current thread:
- CVE request: BigTree CMS SQL injection and reflected cross-site scripting vulnerabilities fixed in 4.2.12 / 4.1.16 Henri Salo (Nov 11)