Permalink
6 changes: 5 additions & 1 deletion
6
application/views/admin/participants/modal_subviews/_editAttribute.php
6 comments
on commit
sign in to comment.
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Browse files
Browse the repository at this point in the history
Fixed issue #15672: LimeSurvey 3.21.1 Cross Site Scripting
- Loading branch information
lacrioque
committed
Dec 19, 2019
1 parent
0a7bdfa
commit 38e1ab0
Showing
1 changed file
with
5 additions
and
1 deletion.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
38e1ab0There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Hi,
Since this issue is already resolved, could you please assign CVE for this vulnerability? Also, would it be possible to disclose this vulnerability to public? https://bugs.limesurvey.org/view.php?id=15672
Thanks!
38e1ab0There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Could you please assign CVE to this vulnerability? Thanks.
38e1ab0There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@olleharstedt One for you...
38e1ab0There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
We don't do CVE. But anyone can file it, I believe? Otherwise, bring it up during IRC meeting about our policy.
38e1ab0There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Hi @olleharstedt, I am trying to request a CVE numbers for the following vulnerabilities, which I reported them back in December, 2019.
https://bugs.limesurvey.org/view.php?id=15680
https://bugs.limesurvey.org/view.php?id=15681
https://bugs.limesurvey.org/view.php?id=15672
I am no longer able to browse on to the above links to view my reported vulnerabilities. Could you please let me access them through the bugs.limesurvey website. And also could you please mark these vulnerabilities as PUBLIC?
Regards,
Guram.
38e1ab0There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@guramj I've marked the issues as public.