Thanks for the report! While technically XSS, I don't feel this is a
real issue. mythweb does not have authentication itself, and allowing
access to it by untrusted people would certainly see the demise of your
myth configurations, if not worse. It is not meant to be public-facing.
If I'm overlooking something, please explain it further. Thanks!
** Visibility changed to: Public
** This bug is no longer flagged as a security issue
** Changed in: mythtv (Ubuntu)
Importance: Undecided => Wishlist
Status: New => Confirmed
--
mythweb vulnerable to XSS
https://bugs.launchpad.net/bugs/220088
You received this bug notification because you are a member of Ubuntu
Bugs, which is a direct subscriber.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
