[gforge] [CVE-2008-0173] SQL injection vulnerability
Bug #182809 reported by
disabled.user
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| gforge (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Bug Description
Binary package hint: gforge
References:
DSA-1459-1 (http://
Quoting:
"It was discovered that Gforge, a collaborative development tool, did not
properly sanitise some CGI parameters, allowing SQL injection in scripts
related to RSS exports."
CVE References
Revision history for this message
| Michael Bienia (geser) wrote | #1 |
| Changed in gforge: | |
| status: | New → Fix Released |
To post a comment you must log in.
For hardy fixed in gforge 4.6.99+svn6330-1.