Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: CVE-2007-1732: wordpress mt import XSS https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=235015 jwb@xxxxxxxxxx changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution| |NOTABUG ------- Additional Comments From jwb@xxxxxxxxxx 2007-04-08 18:22 EST ------- This looks to me like a valid feature - it requires authentication and willing interaction on the part of the authenticated individual to exploit. I can't really call someone who knowingly and willingly uses such a feature a "victim". Although I can see where some would consider this a bug, I don't. If someone can point out a scheme whereby this would be a problem, I'm willing to be convinced otherwise, but until then, CLOSED-NOTABUG -- Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is. -- Fedora-security-list mailing list Fedora-security-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-security-list
