2 matches found
[SECURITY] [DSA 1568-1] New b2evolution packages fix cross site scripting
------------------------------------------------------------------------ Debian Security Advisory DSA-1568-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst May 05, 2008 http://www.debian.org/security/faq -...
CVE-2007-0175
Cross-site scripting XSS vulnerability in htsrv/login.php in b2evolution 1.8.6 allows remote attackers to inject arbitrary web script or HTML via scriptable attributes in the redirectto parameter...