Full Disclosure mailing list archives
ANSA editorial system vulnerable
From: "Rosario Valotta" <rosario.valotta () gmail com>
Date: Tue, 9 Oct 2007 17:36:18 +0200
ANSA is the greatest italian press agency. It has offices and employees all around the world. ANSA provides news to all main italian news aggregators and information web sites. ANSA is "trusted". ANSA editorial web portal is vulnerable, it lacks the basic security principles. Everyone with a small knowledge of webapps security can sneak into ANSA system and read/WRITE (fake) news. As the system is "trusted" a very cunning and well written news will pass the human supervision and be published online on ansa.it portal. Details (in italian for the now) at rosario.valotta.googlepages.com After notification, ANSA IT department has solved the issues. Regards, Rosario Valotta
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- ANSA editorial system vulnerable Rosario Valotta (Oct 09)