** Changed in: aikiframework
Status: Confirmed => Won't Fix
** Changed in: openclipart
Status: Confirmed => Won't Fix
** Changed in: openclipart
Milestone: 3.3 => 3.2
--
You received this bug notification because you are a member of Aiki
Framework Admins, which is subscribed to aikiframework.
https://bugs.launchpad.net/bugs/728647
Title:
Cross-site Scripting issue on "Artists" page
Status in Aiki Framework:
Won't Fix
Status in openclipart:
Won't Fix
Bug description:
On a page which appears to be the very last page of the "Artists"
directory (http://www.openclipart.org/artists?page=66) The user
"spongman" appears to have revealed a vulnerability within the
openclipart.org site. There is a frame under his Artist profile which
displays a Wikipedia article about Cross-site Scripting. I'm sure it
does not belong there and though I'm not sure, I believe it is a
security vulnerability.
To manage notifications about this bug go to:
https://bugs.launchpad.net/aikiframework/+bug/728647/+subscriptions
_______________________________________________
Mailing list: https://launchpad.net/~aikiframework.admins
Post to : [email protected]
Unsubscribe : https://launchpad.net/~aikiframework.admins
More help : https://help.launchpad.net/ListHelp
