Re: [galaxy-dev] Galaxy prone to XSS and HTML injection attacks

20 Mar 2011

      I'd be happy to review the scan results, feel free to send them to me.  I'll share it with the rest of the team as well.
Thanks!
-Dannon
On Mar 19, 2011, at 11:37 AM, Paul, Rohit (NIH/NCI) [C] wrote:
...
We recently ran a Nessus vulnerability scan against our server that hosts a local installation of Galaxy. The scan report showed that the web application is vulnerable to XSS and HTML injection attacks. In order to determine if/when these vulnerabilities will be fixed, where should I either send or post the scan results?
-Rohit

Please keep all replies on the list by using "reply all"
in your mail client.  To manage your subscriptions to this
and other Galaxy lists, please use the interface at:
http://lists.bx.psu.edu/

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

Re: [galaxy-dev] Galaxy prone to XSS and HTML injection attacks