[Bug 235015] CVE-2007-1732: wordpress mt import XSS
bugzilla at redhat.com
bugzilla at redhat.com
Sun Apr 8 22:23:02 UTC 2007
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
Summary: CVE-2007-1732: wordpress mt import XSS
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=235015
jwb at redhat.com changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |CLOSED
Resolution| |NOTABUG
------- Additional Comments From jwb at redhat.com 2007-04-08 18:22 EST -------
This looks to me like a valid feature - it requires authentication and willing
interaction on the part of the authenticated individual to exploit. I can't
really call someone who knowingly and willingly uses such a feature a "victim".
Although I can see where some would consider this a bug, I don't. If someone
can point out a scheme whereby this would be a problem, I'm willing to be
convinced otherwise, but until then, CLOSED-NOTABUG
--
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
More information about the security
mailing list