Re: security issues with app

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

Re: security issues with app

Scott Cain
Hi Ian,

GBrowse 1.70 is very old and development was stopped on it quite some time ago.  We've addressed several security issues in GBrowse2, the most current version of which is 2.54.

Scott


On Mon, Apr 6, 2015 at 10:40 AM, Ian Miller <[hidden email]> wrote:
Hi support,
Are security team has just notified us that the current version we are running has a 
Many security issues.  Here is the email we received today. 


The BSD Information Security Office performed web application vulnerability scans on publicly accessible web applications.
We have detected four (86) potential Cross Site Scripting (XSS) vulnerabilities on agdp.uchicago.edu

Do you have a fix for these in the latest version?
We are running 
Generic genome browser version 1.70

Ian Miller
Research Systems Administrator
<a href="tel:773-702-5135" value="+17737025135" target="_blank">773-702-5135
Ecology & Evolution
Organismal Biology and Anatomy
University of Chicago 




--
------------------------------------------------------------------------
Scott Cain, Ph. D.                                   scott at scottcain dot net
GMOD Coordinator (http://gmod.org/)                     216-392-3087
Ontario Institute for Cancer Research

------------------------------------------------------------------------------
BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT
Develop your own process in accordance with the BPMN 2 standard
Learn Process modeling best practices with Bonita BPM through live exercises
http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_
source=Sourceforge_BPM_Camp_5_6_15&utm_medium=email&utm_campaign=VA_SF
_______________________________________________
Gmod-gbrowse mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/gmod-gbrowse