[VIM] Question on OS4E vulnerability (fwd)

Steven M. Christey coley at linus.mitre.org
Tue May 31 23:54:39 EDT 2005

OS4E appears to be a vendor, not a product.  Clarification requested from
the researcher...

- Steve

---------- Forwarded message ----------
Date: Tue, 31 May 2005 23:53:55 -0400 (EDT)
From: Steven M. Christey <coley at mitre.org>
To: udnst at yahoo.com
Subject: Question on OS4E vulnerability


I am the editor of the CVE List.

Your recent vulnerability report on SQL injection in OS4E did not give
a specific product name.

OS4E is the name of the vendor.  Their web site shows three products:

  - 30-Minute Websites for Teachers
  - Pupil Pages
  - Sites-4-Schools

which product has the SQL injection vulnerability?  Or is there a
different product that has the problem?

Thank you,

More information about the VIM mailing list