Title: My first CVE
Date: 2014-04-03 10:00

It seems that [someone]( http://people.ee.ethz.ch/~bonaccos/ ) [requested]( http://www.openwall.com/lists/oss-security/2014/04/01/2 ) a CVE for the batch of XSS I found in [Shaarli]( https://github.com/sebsauvage/Shaarli/issues/134 ) 6 month ago. Since the software is not really maintained, nor widely used, a CVE for this seems weird. Anyway CVE-2013-7351 was assigned, time to party in honour of my first CVE \o/

Bonus: [json_encode]( https://github.com/sebsauvage/Shaarli/commit/53da201749f8f362323ef278bf338f1d9f7a925a ) has never been an XSS mitigation ;)