Full Disclosure mailing list archives
Re: File Disclosure in DAMN VULNERABLE WEB APPversion 1.0.6
From: WHK <www.kernel32 () gmail com>
Date: Tue, 29 Dec 2009 17:12:50 -0300
Is not a feature, the vulnerabilities are controled by /vulnerabilities/[id vuln]/* no in file view_source.php. If an sistem have SQL inyection is a feature? mysql_query(' select * from '.$_GET['table']); is a feature? _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: File Disclosure in DAMN VULNERABLE WEB APPversion 1.0.6 infolookup (Dec 29)
- Re: File Disclosure in DAMN VULNERABLE WEB APPversion 1.0.6 WHK (Dec 29)
- Re: File Disclosure in DAMN VULNERABLE WEB APPversion 1.0.6 ghost (Dec 29)
- Re: File Disclosure in DAMN VULNERABLE WEB APPversion 1.0.6 Valdis' Mustache (Dec 29)
- Re: File Disclosure in DAMN VULNERABLE WEB APPversion 1.0.6 ghost (Dec 29)
- Re: File Disclosure in DAMN VULNERABLE WEB APPversion 1.0.6 WHK (Dec 29)