[ZendTo] Re: ZendTo: Release 4.11-13

John Thurston john.thurston at alaska.gov
Mon Dec 16 17:31:34 GMT 2013


On 12/14/2013 4:47 AM, Jules wrote:
> Folks,
>
> I have just released a new version to fix the vulnerability found by
> Richard Rogerson in ZendTo. It's a cross-site scripting vulnerability
> that I let through by mistake.

I have searched the list archives and looked on the zend.to web pages 
but can find no reference to the vulnerability you mention. Has it been 
discussed in the mail list (and I haven't yet hit on the right search 
terms to find it)?

-- 
    Do things because you should, not just because you can.

John Thurston    907-465-8591
John.Thurston at alaska.gov
Enterprise Technology Services
Department of Administration
State of Alaska


More information about the ZendTo mailing list