Make a Lasting Impression
News and Articles > ImpressCMS Community News > ImpressCMS Security Announcements > Incorrect notification about XSS in content module

Incorrect notification about XSS in content module

Published by Fiammybe on 2013/7/29 (1267 reads)
Incorrect notification about XSS in content module

Notification about a potential security issue in the Content Module, delivered with ImpressCMS 1.3.4, circulate on the internet. The issuer already got in touch with us in February. However, the ImpressCMS team and more in particular the security expert, could not reproduce the issue.

Nevertheless, the issuer has published this matter as security issue this week. This is a false notification. The Content Module cannot be attacked this way, so there is no reason to be worried.

In case there would be new information furtheron, this will of course be shared with the community. In the meantime, we stay in touch with the issuer and wait for further information.

Navigate through the articles
Previous article Security Notification CVE-2014-4036 (Low Impact) Security Vulnerability in FCKeditor Next article
The comments are owned by the poster. We aren't responsible for their content.
Poster Thread