Re: Happy Holidays / Xmas Advisory

[Gage Bystrom <themadichib0d () gmail com>]

And it just so kindly tells you were everything is located,  just in case
you wanted to know

Ex:

http://demo.fatfreecrm.com/passwords/

I half expected to find password hashes but oh well that's life. It is a
great "hack me" application when you can find random vulns simply by
dicking around on your phone.

> On Dec 26, 2013 3:56 AM, "PsychoBilly" <zpamh0l3 () gmail com> wrote:
> > [[   Henri Salo   ]] @ [[   24/12/2013 18:33
]]--------------------------------------------------
> > > On Tue, Dec 24, 2013 at 11:26:15AM +0100, joernchen wrote:
> > > > A rather informal advisory on Fat Free CRM (http://fatfreecrm.com/):
> > >
> > > I created https://github.com/fatfreecrm/fat_free_crm/issues/300 for
tracking.
> > > ---
> > > Henri Salo
> > >
> > > _______________________________________________
> > > Full-Disclosure - We believe in it.
> > > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > > Hosted and sponsored by Secunia - http://secunia.com/
> > I really like the full user db listing "feature"
> > view-source:http://demo.fatfreecrm.com/login
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/