www/dotproject out of date and vulnerable

Fred Cox sailorfred at yahoo.com
Mon Sep 18 19:00:05 PDT 2006

www/dotproject is still 2.0.2, even though 2.0.4 came
out in June to address an XSS vulnerability.  See
http://www.dotproject.net/ for details.

I've sent mail to the maintainer and the contact for
portaudit, with no response in over 2 weeks and 1 week
respectively.  Portaudit does not report any problem
with dotproject.

What's the next step?

Fred Cox

Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 

More information about the freebsd-ports mailing list