[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Simple Machines Forum Cross-Site Scripting Vulnerabilities

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Simple Machines Forum Cross-Site Scripting Vulnerabilities
From: dev@xxxxxxxx
Date: 27 Jan 2008 04:52:22 -0000

Please note that the URL provided is not a standard SMF URL.  This requires 
that a portal be installed, though I am unclear as to which one.

SMF, as a standalone package, has undertaken steps to eradicate XSS injection 
vulnerabilities.  SMF cannot be held accountable for mod packages that aren't 
kept current or secured.

Prev by Date: eTicket 'index.php' Cross Site Scripting Path Vulnerability
Next by Date: Re: OneCMS Vulnerabilities
Previous by thread: Simple Machines Forum Cross-Site Scripting Vulnerabilities
Next by thread: PR07-06, PR07-07, PR07-08, PR07-09, PR07-10, PR07-12: Several XSS, Cross-domain Redirection and Frame Injection on Sun Java System Identity Manager
Index(es):
- Date
- Thread