lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <6f4bb0b50912291303i67eab4c1k39b217c23c9c8c1d@mail.gmail.com> Date: Tue, 29 Dec 2009 13:03:31 -0800 From: ghost <ghosts@...il.com> To: WHK <www.kernel32@...il.com> Cc: full-disclosure@...ts.grok.org.uk Subject: Re: File Disclosure in DAMN VULNERABLE WEB APPversion 1.0.6 You are very stupid. On Tue, Dec 29, 2009 at 12:12 PM, WHK <www.kernel32@...il.com> wrote: > Is not a feature, the vulnerabilities are controled by > /vulnerabilities/[id vuln]/* no in file view_source.php. > > If an sistem have SQL inyection is a feature? > mysql_query(' select * from '.$_GET['table']); > is a feature? > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists