Web Application Security
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: Web Application Vulnerability Categorization Apr 02 2014 06:36PM
m@d m0nk (th3madm0nk gmail com)
Thank you guys - got the idea.

On Wed, Apr 2, 2014 at 7:10 PM, Eric Schultz <fire0088 (at) gmail (dot) com [email concealed]> wrote:
> Its important to note that you described two different findings.
> 1. Password recovery is brute forcable. If you stuck with owasp, the broken
> auth catagory is the best fit. Check if your ...

[ more ]  

Privacy Statement
Copyright 2010, SecurityFocus