[Bug 62343] CORS security: reflecting any origin header value when configured to * is dangerous

2022-10-28 Thread bugzilla 
https://bz.apache.org/bugzilla/show_bug.cgi?id=62343

--- Comment #3 from gadai bpkb  ---
https://www.mandiripinjamandana.com/
https://www.mandiripinjamandana.com/2017/12/syarat-gadai-bpkb-dan-kredit-mobil-bekas.html
https://www.mandiripinjamandana.com/2017/12/gadai-bpkb-mobil.html
https://www.mandiripinjamandana.com/2018/01/kredit-mobil-bekas.html

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[Bug 62343] CORS security: reflecting any origin header value when configured to * is dangerous

2021-06-13 Thread bugzilla 
https://bz.apache.org/bugzilla/show_bug.cgi?id=62343

--- Comment #3 from hotmail  ---
I'm glad that the issues has been fixed .If you want to know how to login into
hotmail account . https://tangent.com/engl/facebook-login/

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[Bug 62343] CORS security: reflecting any origin header value when configured to * is dangerous

2019-06-12 Thread bugzilla 
https://bz.apache.org/bugzilla/show_bug.cgi?id=62343

--- Comment #3 from sam zain  ---
this 's really useful. 

http://www.winmilliongame.com
http://www.gtagame100.com
http://www.subway-game.com
http://www.zumagame100.com

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[Bug 62343] CORS security: reflecting any origin header value when configured to * is dangerous

2018-05-16 Thread bugzilla 
https://bz.apache.org/bugzilla/show_bug.cgi?id=62343

Mark Thomas  changed:

   What|Removed |Added

 Resolution|--- |FIXED
 Status|NEW |RESOLVED

--- Comment #2 from Mark Thomas  ---
Potential security issues should not be reported via a public bug tracker.

Please see the following for details of how to report security issues in Apache
Tomcat:
http://tomcat.apache.org/security.html

Please see the following for details of how to report security issues in any
other Apache project:
http://www.apache.org/security/


Fixed in:
- trunk for 9.0.9 onwards
- 8.5.x for 8.5.32 onwards
- 8.0.x for 8.0.53 onwards
- 7.0.x for 7.0.89 onwards


The lack of response was due to the Tomcat committers not wishing to draw
further attention to the issue until it had been addressed.


This issue has been assigned CVE-2018-8014.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[Bug 62343] CORS security: reflecting any origin header value when configured to * is dangerous

2018-05-11 Thread bugzilla 
https://bz.apache.org/bugzilla/show_bug.cgi?id=62343

--- Comment #1 from Jianjun Chen  ---
Hi, is there something I forget to do to advance this report?  I haven't
received any response yet.

Thanks,
Jianjun

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org