TSA 2009-06/1

Published by AlexC, Jun 29, 2009

An XSS vulnerability was discovered within the internal 'Html' library, due to an incorrectly handled string that could be provided by the user.

Affected versions:: < 2.3.0
Related bug report:: Security #140
Solution:: Upgrade to 2.3.0 or later

Share this!

0 comments for "TSA 2009-06/1"

There are currently no comments.

Leave a comment

Security RSS Feed

Keep up to date with the latest TangoCMS Security Announcements with our TSAs RSS Feed.

More about security »

Recent TSA Reports

TSA 2010-03/1: Published by AlexC, Mar 21, 2010
TSA 2009-12/1: Published by AlexC, Dec 14, 2009
TSA 2009-06/1: Published by AlexC, Jun 29, 2009
TSA 2009-02/1: Published by AlexC, Feb 20, 2009
TSA 2008-12/1: Published by AlexC, Dec 18, 2008
TSA 2008-10/1: Published by AlexC, Oct 18, 2008