BugTraq
On product vulnerability history and vulnerability complexity Mar 24 2006 08:01AM
Steven M. Christey (coley mitre org) (1 replies)
Re: On product vulnerability history and vulnerability complexity Apr 01 2006 11:00PM
Crispin Cowan (crispin novell com) (3 replies)
Re: On product vulnerability history and vulnerability complexity Apr 03 2006 07:12PM
Gadi Evron (ge linuxbox org) (1 replies)
Re: On product vulnerability history and vulnerability complexity Apr 04 2006 07:49AM
Javor Ninov (drfrancky securax org)

Sorry if i sound rude but:
Gadi Evron wrote:

> Looking even at web applications and their history one can easily tell if:
> 1. They are professionally written.
> 2. The vulnerabilities seen before and the ones we could find are not
> trivial or really say anything about the coder.
>
> That's how we chose WordPress for blogging.
So you mean that XSS is not trivial and difficult to spot ?
For today code XSS is unacceptable and speaks very for the author.

--
Javor Ninov aka DrFrancky
securitydot.net

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (MingW32)

iD8DBQFEMiTuck4kcwaj+YIRAs5nAJ4rBjT4JCzKX/60goxWhwxb+E08TwCfQBlL
v6BSv51Kj3HWh9nMybI3st0=
=YCZ5
-----END PGP SIGNATURE-----

[ reply ]
Re: On product vulnerability history and vulnerability complexity Apr 03 2006 05:19PM
Forrest J. Cavalier III (mibsoft mibsoftware com) (1 replies)
Re: On product vulnerability history and vulnerability complexity Apr 04 2006 12:34AM
Gadi Evron (ge linuxbox org)
Re: On product vulnerability history and vulnerability complexity Apr 03 2006 03:44PM
ArkanoiD (ark eltex net)


 

Privacy Statement
Copyright 2010, SecurityFocus