[Phpmyadmin-git] [SCM] phpMyAdmin website branch, master, updated. 4a0c2d3e09961ce3717d0b2ecb20a1e744c79826
The branch, master has been updated via 4a0c2d3e09961ce3717d0b2ecb20a1e744c79826 (commit) from 23f165c6d8ed9fa195a47ce8a639a6c45007705e (commit)
- Log ----------------------------------------------------------------- commit 4a0c2d3e09961ce3717d0b2ecb20a1e744c79826 Author: Marc Delisle marc@infomarc.info Date: Sat Dec 3 10:06:54 2011 -0500
Update to PMASA-2011-18
-----------------------------------------------------------------------
Summary of changes: templates/security/PMASA-2011-18 | 6 +++++- 1 files changed, 5 insertions(+), 1 deletions(-)
diff --git a/templates/security/PMASA-2011-18 b/templates/security/PMASA-2011-18 index 2965f59..a13680b 100644 --- a/templates/security/PMASA-2011-18 +++ b/templates/security/PMASA-2011-18 @@ -8,6 +8,10 @@ PMASA-2011-18 2011-12-01 </py:def>
+<py:def function="announcement_updated"> +2011-12-03 +</py:def> + <py:def function="announcement_summary"> Multiple XSS. </py:def> @@ -19,7 +23,7 @@ Using a crafted column type, it was possible to produce XSS in the table search </py:def>
<py:def function="announcement_mitigation"> -These attacks are unlikely to succeed on a victim. +These attacks are unlikely to succeed on a victim. Moreover, all these attacks require that the user be already logged in and that a valid token be part of the request. </py:def>
<py:def function="announcement_severity">
hooks/post-receive
-
Marc Delisle