Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 11 May 2015 14:12:13 +0100
From:      Matthew Seaman <matthew@freebsd.org>
To:        freebsd-questions@freebsd.org
Subject:   Re: XSS in your search input
Message-ID:  <5550AAAD.5090801@freebsd.org>
In-Reply-To: <5550A3F4.6070003@gaxweb.com>
References:  <5550A3F4.6070003@gaxweb.com>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--va6DNLxcN0jGG944FVdrAOLHhvo9xK8x7
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable

On 05/11/15 13:43, Matthias Holl wrote:
> hi freeBSD team,
>=20
> i found a XSS vulnerability on your webpage (search input)

Please can you contact the security team with details:

   secteam@freebsd.org

	Cheers,

	Matthew


--va6DNLxcN0jGG944FVdrAOLHhvo9xK8x7
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iQJ8BAEBCgBmBQJVUKqtXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w
ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQxOUYxNTRFQ0JGMTEyRTUwNTQ0RTNGMzAw
MDUxM0YxMEUwQTlFNEU3AAoJEABRPxDgqeTnQIcQAKTvjWWMCXp6IemJc6zJlon3
rGWUrQffjsvDg3tnqtQwqdRJZ8dOIs2mNu+4nsJVfu9yd8FrBDt9PeZMRtNnU67n
z9akqQiyH5oFbRhDvr+VI6iQZGxkpBiCRjMhWtgGldzkKYhGiosrldx0/tFMTWba
QQ0wNwkRuJ3fbUrCFRCMnxccslRHZ9tYWJF+PPNl/ZO8kmI7KFOyDVo9ms4AYBrN
vOZvuOAWuqCh5lHfhAod0s/pAC8AnQZvXSH5MZauCkRHgs/JQ4VaGmFFKrHNhXbc
gj6r6pXJSoJjbaUqAcKwsAxUptkKQ3cIDK8O4eFNJH2TqvnBGa/V9dGAULtoMkSr
J4HmJdhmr2QVPNbJ4AN/dtjBcCxkQLIaDnaPJ2+FTD0af5yFnVggrjezkw2ypDW6
2uMMj1mxtdVXQTPpfxUmPX5kQB3qJBIrXpt9hBux67cwSABjTzbcM2ajLlRSSCs+
Caojsy7jZMuDA/pg+3aMOoFIXIBJyZBjRoKU5hZjAD3s0M+w7If9olrvToGQWVLr
auTwH1Hq5ANJnozACh/t+7uABjLx8AcpO/hDbet3vOwWyajYdiuCaX+K1xZO195J
ebOdyb4EcP89hQfhA5ytnXTZCPtlGaEB0XLN/0q6tkvvF+usf/UYU0ls4NtzrTFE
AQfUJJ+gOjYJqsvfY+eh
=vQ+N
-----END PGP SIGNATURE-----

--va6DNLxcN0jGG944FVdrAOLHhvo9xK8x7--



Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?5550AAAD.5090801>