| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | nikto: upgrade to 2.1.6 (v2) | Scott Ellis | 2019-01-06 | 1 | -106/+0 |
| | | | | | | | | Source now on github. Signed-off-by: Scott Ellis <scott@jumpnowtek.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> | ||||
| * | CVE-2018-11652 nikto: arbitray OS command injection via http server field. | Nagalakshmi Veeramallu | 2018-07-03 | 1 | -0/+106 |
| CSV Injection vulnerability in Nikto 2.1.6 and earlier allows remote attackers to inject arbitrary OS commands via the Server field in an HTTP response header, which is directly injected into a CSV report. Signed-off-by: Nagalakshmi Veeramallu <nveeramallu@mvista.com> Reviewed-by: Jagadeesh Krishnanjanappa <jkrishnanjanappa@mvista.com> Signed-off-by: Armin Kuster <akuster@mvista.com> | |||||
 |
index : linux/meta-security.git | |
| Mirror of git.yoctoproject.org/meta-security.git | N/A |
| summaryrefslogtreecommitdiffstats |