Package: nm.debian.org Severity: normal Tags: security
Hi, there's an XSS issue here: https://nm.debian.org/gpglogin2.php?username=%22%20onmouseover%3Ddocument.location%3DString.fromCharCode%28104,116,116,112,58,47,47,114,101,100,104,97,116,46,99,111,109%29%2F%2F Once you have this URL loaded, hover your mouse over 'here'. This was tested with Iceweasel 3.0.14 but should work with other web browsers just as well (as long as you have a pointing device). Moritz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
