Join the Mailing List
9 user(s) are online (1 user(s) are browsing News and Articles)
Incorrect notification about XSS in content modulePublished by Fiammybe on 2013/7/29 (578 reads)
Notification about a potential security issue in the Content Module, delivered with ImpressCMS 1.3.4, circulate on the internet. The issuer already got in touch with us in February. However, the ImpressCMS team and more in particular the security expert, could not reproduce the issue.
Nevertheless, the issuer has published this matter as security issue this week. This is a false notification. The Content Module cannot be attacked this way, so there is no reason to be worried.
In case there would be new information furtheron, this will of course be shared with the community. In the meantime, we stay in touch with the issuer and wait for further information.