Tickets :: [#9357] XSS: VCARD attachments

5.1.5-git

12/10/13

Summary	XSS: VCARD attachments
Queue	Horde Framework Packages
Queue Version	Git master
Type	Bug
State	Resolved
Priority	3. High
Owners	Horde Developers (at) , jan (at) horde (dot) org
Requester	slusarz (at) horde (dot) org
Created	11/02/10 (1134 days ago)
Due
Updated	11/18/10 (1118 days ago)
Assigned
Resolved	11/18/10 (1118 days ago)
Milestone
Patch	No

11/18/10 18:13:38	Michael Slusarz	State ⇒ Resolved

11/18/10 18:13:33	Git Commit	Comment #5	Reply to this comment
Changes have been made in Git for this ticket: ~~Bug #9357~~: changelog http://git.horde.org/diff.php/horde/docs/CHANGES?rt=horde-git&r1=118be0578b9e8b652ca70b312401a585d9c4b063&r2=fc454915a1829899e463a808516ef42e263ef0e4

11/18/10 18:12:40	CVS Commit	Comment #4	Reply to this comment
Changes have been made in CVS for this ticket: ~~Bug: 9357~~ [mms] SECURITY: Fix XSS when viewing details of a vCard. http://cvs.horde.org/diff.php/framework/MIME/MIME/Viewer/Attic/vcard.php?rt=horde&r1=1.34.10.27&r2=1.34.10.28&ty=u http://cvs.horde.org/diff.php/horde/docs/CHANGES?rt=horde&r1=1.515.2.639&r2=1.515.2.640&ty=u

11/02/10 19:53:48	Git Commit	Comment #3	Reply to this comment
Changes have been made in Git for this ticket: ~~Bug #9357~~: XSS fix for VCARD attachments http://git.horde.org/diff.php/framework/Core/lib/Horde/Core/Mime/Viewer/Vcard.php?rt=horde-git&r1=0848333eaff50a30c120e9144736cbd9fb176b56&r2=5e0dc28dfa868f1481181bb604e7c44a0d5dadc4

11/02/10 19:53:25	Michael Slusarz	Comment #2 (Private)
[Hidden]

11/02/10 19:51:45	Michael Slusarz	Comment #1 State ⇒ Assigned Patch ⇒ No Milestone ⇒ Assigned to Horde Developers Assigned to Jan Schneider Queue ⇒ Horde Framework Packages Summary ⇒ XSS: VCARD attachments Type ⇒ Bug Priority ⇒ 3. High	Reply to this comment
XSS vulnerability in VCARD attachments. Confirmed in git.