[Bug 1964710] [NEW] XSS vulnerability in row_create

Nicholas Guriev Sun, 13 Mar 2022 06:20:49 -0700

Public bug reported:

On 21 August 2021, it was publicly reported a little XSS vulnerability
in the phpLiteAdmin script packaged in Ubuntu. The following versions of
the phpliteadmin package are affected.


 * 1.9.8.2-1 echoes GET parameter newRows to HTML with no properly
   escaping nor conversion.
 * 1.9.7.1-1ubuntu0.1 does similar with POST parameter num.

** Affects: phpliteadmin (Ubuntu)
     Importance: Undecided
         Status: New


** Tags: bionic focal

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1964710

Title:
  XSS vulnerability in row_create

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/phpliteadmin/+bug/1964710/+subscriptions


-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1964710] [NEW] XSS vulnerability in row_create

Reply via email to