[VIM] vendor ack - 21849: EPiX Search Module query Variable XSS (fwd)
security curmudgeon
jericho at attrition.org
Fri Jan 5 15:17:49 EST 2007
---------- Forwarded message ----------
From: Hani Suleiman
To: moderators at osvdb.org
Date: Fri, 5 Jan 2007 18:06:02 +0000
Reply-To: moderators at osvdb.org
Subject: [OSVDB Mods] [Change Request] 21849: EPiX Search Module query Variable
XSS
Hi there,
This issue is fixed in epix 3.1.3 and later, please update your database
accordingly. Thank you!
You can verify by trying to inject html into the search page at
www.formicary.net
More information about the VIM
mailing list