Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

个性签名 XSS 漏洞 #860

Closed
ldqsmile opened this Issue Jan 23, 2019 · 3 comments

Comments

3 participants
@ldqsmile
Copy link

ldqsmile commented Jan 23, 2019

版本3.4.6,考虑安全问题,详情我按 #855 提到的邮箱发过去了,请知~

@88250 88250 self-assigned this Jan 23, 2019

@88250 88250 added the bug label Jan 23, 2019

@88250 88250 added this to the 3.4.7 milestone Jan 23, 2019

@88250 88250 changed the title Stored Cross Site Scripting(XSS) vulnerability 个性签名 XSS Jan 23, 2019

@88250 88250 changed the title 个性签名 XSS 个性签名 XSS 漏洞 Jan 23, 2019

@88250

This comment has been minimized.

Copy link
Member

88250 commented Jan 23, 2019

稍后我们会进行修复,一个月后在该 issue 下上传公开你发送的报告文件。

非常感谢 ❤️

@88250 88250 closed this in 5a74493 Jan 23, 2019

@88250

This comment has been minimized.

Copy link
Member

88250 commented Feb 22, 2019

@fgeek

This comment has been minimized.

Copy link

fgeek commented Feb 27, 2019

CVE-2019-9142 has been assigned for this vulnerability.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.