CPANSA-GBrowse-2017-01: GBrowse vulnerability

Publisher giterlizzi Document category csaf_informational_advisory
Initial release date 2017-01-15T00:00:00 Engine CSAF Perl Toolkit 0.25
Current release date 2017-01-15T00:00:00 Build Date
Current version 1 Status final
CVSS v3.1 Base Score Severity
Original language Language en
Also referred to

Vulnerability Description

An attacker is able to delete other users' accounts. No httponly cookie flag. Cross-site scripting vulnerability in generation of citation text.

giterlizzi

Namespace: https://github.com/giterlizzi/

gdt@cpan.org

References

Revision history

Version Date of the revision Summary of the revision
1 Sun Jan 15 00:00:00 2017 First release

Sharing rules

TLP:WHITE
For the TLP version see: https://www.first.org/tlp/