f923d51199
Fix CVE-2009-4422: Multiple cross-site scripting (XSS) vulnerabilities in the GetURLArguments function in jpgraph.php in Aditus Consulting JpGraph 3.0.6 allow remote attackers to inject arbitrary web script or HTML via a key to csim_in_html_ex1.php, and other unspecified vectors. Despite ports tree version is 3.0.7, this vulnerability has not been fixed. The solution is taken from http://www.securityfocus.com/archive/1/archive/1/508586/100/0/threaded While on it: - Fix typo in port creator's mail address - Add LICENSE* - Add NO_ARCH=yes (port only installs scripts) PR: 207001 Submitted by: venture37@geeklan.co.uk MFH: 2016Q1 Security: CVE-2009-4422 |
||
|---|---|---|
| .. | ||
| files | ||
| distinfo | ||
| Makefile | ||
| pkg-descr | ||