Opened 5 years ago

Last modified 5 years ago

#907 new defect

Security Issues to fix urgently

Reported by: gkka321 Owned by: gkka321
Priority: very high Milestone:
Component: Greenstone3 Runtime Severity: major
Keywords: Cc:

Description

Dear Sir,

The following issues are to be fixed urgently

  1. Reflected cross site scripting
  2. Open Redirection
  3. Click jacking vulnerability
  4. Brute Force attack in login page
  5. Improper error handling

Change History (9)

comment:1 by ak19, 5 years ago

Hello, could you document an example or more of each type of attack and send this to the mailing list? We will then be able to study the matter better and try get Greenstone 3 fixed up for this.

Thank you.

comment:2 by gkka321, 5 years ago

Component: InstallationGreenstone3 Runtime
Owner: changed from nobody to gkka321

in reply to:  1 comment:3 by gkka321, 5 years ago

Supporting files has been uploaded

Note: See TracTickets for help on using tickets.