Logging Security Bugs
sbodger
Joined: 2009-04-15
Posts: 2 |
Posted: Wed, 2009-04-15 19:18 |
Hi All I've just installed Alpha 3 and believe it is vulnerable to an XSS attack. Is this the right place to report it? Thanks |
|
Posts: 27300
please use:
A full security review is underway using a 3rd party security company as was done in G1 and G2.
Dave
_____________________________________________
Blog & G2 || floridave - Gallery Team
Posts: 16504
Yes, please report it to the email address Dave listed and read the Security Warning and Roadmap sections on this page for more information:
http://gallery.menalto.com/gallery_3.0_alpha_3_released
____________________________________________
Like Gallery? Like the support? Donate now!!! See G2 live here
Posts: 2
Thanks - I'll send the email.
I suspect it's already on the known list as it's quite an obvious attack vector, but no harm in checking.
Posts: 27300
Thanks for keep us on our toes!
Dave
_____________________________________________
Blog & G2 || floridave - Gallery Team