svn propchange: r1761986 - svn:log

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

svn propchange: r1761986 - svn:log

jleroux@apache.org
Author: jleroux
Revision: 1761986
Modified property: svn:log

Modified: svn:log at Tue Nov 29 08:19:45 2016
------------------------------------------------------------------------------
--- svn:log (original)
+++ svn:log Tue Nov 29 08:19:45 2016
@@ -19,11 +19,9 @@ sure it's OK as is
 Thanks: Pierre for report, Scott for spotting the issue.
 ------------------------------------------------------------------------
 
-[CVE-2016-6800] Apache OFBiz blog stored XSS vulnerability
-The default configuration of the OFBiz framework offers a blog
-functionality. Different users are able to operate blogs which are
-related to specific parties. In the form field for the creation of new
-blog articles the user input of the summary field as well as the article
-field is not properly sanitized. It is possible to inject arbitrary
-JavaScript code in these form fields. This code gets executed from the
-browser of every user who is visiting this article.
+[CVE-2016-4462] OFBiz template remote code vulnerability
+By manipulating the URL parameter externalLoginKey, a malicious, logged in
+user could pass valid Freemarker directives to the Template Engine that are
+reflected on the webpage; a specially crafted Freemarker template could be
+used for remote code execution.
+