Bugtraq mailing list archives
Re: On product vulnerability history and vulnerability complexity
From: Javor Ninov <drfrancky () securax org>
Date: Tue, 04 Apr 2006 10:49:02 +0300
Sorry if i sound rude but: Gadi Evron wrote:
Looking even at web applications and their history one can easily tell if: 1. They are professionally written. 2. The vulnerabilities seen before and the ones we could find are not trivial or really say anything about the coder. That's how we chose WordPress for blogging.
So you mean that XSS is not trivial and difficult to spot ? For today code XSS is unacceptable and speaks very for the author. -- Javor Ninov aka DrFrancky securitydot.net
Attachment:
signature.asc
Description: OpenPGP digital signature
Current thread:
- Re: On product vulnerability history and vulnerability complexity Crispin Cowan (Apr 03)
- Re: On product vulnerability history and vulnerability complexity Gadi Evron (Apr 03)
- Re: On product vulnerability history and vulnerability complexity Steven M. Christey (Apr 03)
- Re: On product vulnerability history and vulnerability complexity Javor Ninov (Apr 04)
- Re: On product vulnerability history and vulnerability complexity Steven M. Christey (Apr 04)
- Re: On product vulnerability history and vulnerability complexity ArkanoiD (Apr 03)
- Re: On product vulnerability history and vulnerability complexity Forrest J. Cavalier III (Apr 03)
- Re: On product vulnerability history and vulnerability complexity Gadi Evron (Apr 04)
- Re: On product vulnerability history and vulnerability complexity Gadi Evron (Apr 03)