develooper Front page | perl.perl5.porters | Postings from July 2016

Re: [perl #128620] http://pdl.perl.org Vulnerable to XSS

Thread Next
From:
Mishra Dhiraj
Date:
July 26, 2016 13:30
Subject:
Re: [perl #128620] http://pdl.perl.org Vulnerable to XSS
Message ID:
CAG8b5tSSpJjoEbtQMO5fZ58u7+FwoF9zPr7Le-_gcvgUfWGqyQ@mail.gmail.com
Sir , its been more than a weak , can you please contact some one to patch
that stuff ,
https://sourceforge.net/p/pdl/bugs/426/

Thank you,

On Mon, Jul 18, 2016 at 5:44 AM, Tony Cook via RT <perlbug-followup@perl.org
> wrote:

> On Thu Jul 14 12:50:53 2016, mishra.dhiraj95@gmail.com wrote:
> > Hello Sir ,
> >
> > The Domain " http://pdl.perl.org " can lead to XSS ,
> > *http://pdl.perl.org/index.php?docs=Core&title=
> > <http://pdl.perl.org/index.php?docs=Core&title=>*
> > allows attacker to run the malicious script.
>
> This address is for reporting bugs in perl itself.
>
> pdl.perl.org appears to be maintained on sourceforge at
>
> https://sourceforge.net/projects/pdl/
>
> You might try reporting this problem there.
>
> Closing.
>
> Tony
>



-- 
Regards

*Dhiraj Mishra.*GPG ID :  51720F56   |  Finger Print : 1F6A FC7B 05AA CF29
8C1C  ED65 3233 4D18 5172 0F56

Thread Next


nntp.perl.org: Perl Programming lists via nntp and http.
Comments to Ask Bjørn Hansen at ask@perl.org | Group listing | About