Opened 8 years ago
Last modified 7 years ago
#907 new defect
Security Issues to fix urgently
| Reported by: | gkka321 | Owned by: | gkka321 |
|---|---|---|---|
| Priority: | very high | Milestone: | |
| Component: | Greenstone3 Runtime | Severity: | major |
| Keywords: | Cc: |
Description
Dear Sir,
The following issues are to be fixed urgently
- Reflected cross site scripting
- Open Redirection
- Click jacking vulnerability
- Brute Force attack in login page
- Improper error handling
Attachments (6)
Change History (9)
follow-up: 3 comment:1 by , 8 years ago
by , 8 years ago
| Attachment: | Greenstone_Security_Implementation_Urgent_001.png added |
|---|
by , 8 years ago
| Attachment: | Greenstone_Security_Implementation_Urgent_002.png added |
|---|
by , 8 years ago
| Attachment: | Greenstone_Security_Implementation_Urgent_003.png added |
|---|
by , 8 years ago
| Attachment: | Greenstone_Security_Implementation_Urgent_004.png added |
|---|
by , 8 years ago
| Attachment: | Greenstone_Security_Implementation_Urgent_005.png added |
|---|
by , 8 years ago
| Attachment: | Greenstone_Security_Implementation_Urgent_006.png added |
|---|
comment:2 by , 8 years ago
| Component: | Installation → Greenstone3 Runtime |
|---|---|
| Owner: | changed from to |
Note:
See TracTickets
for help on using tickets.
Hello, could you document an example or more of each type of attack and send this to the mailing list? We will then be able to study the matter better and try get Greenstone 3 fixed up for this.
Thank you.