[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Re: HTTP Response Splitting and SQL injection in megabbs forum

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] Re: HTTP Response Splitting and SQL injection in megabbs forum
From: DanB UK <danbuk@xxxxxxxxx>
Date: Sun, 26 Sep 2004 23:12:42 +0100

It seems like the OP was actually just trying to advertise their(or
affiliates) product.
I would say that its not the 'done' thing.
> However in the future, would it be too much to ask that I am contacted
> first?  I am very eager to fix any security vulnerabilities, but sipping
> coffee on a lazy Sunday afternoon and seeing this broadcast to a public
> list is a little disconcerting.
I understand your concern.

Regards,
Daniel
-- 
DanB UK
London, UK

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] HTTP Response Splitting and SQL injection in megabbs forum
  - From: pigrelax
- [Full-Disclosure] Re: HTTP Response Splitting and SQL injection in megabbs forum
  - From: PD9 Software

Prev by Date: [Full-Disclosure] Re: HTTP Response Splitting and SQL injection in megabbs forum
Next by Date: RE: [Full-Disclosure] Windoze almost managed to 200x repeat 9/11
Previous by thread: [Full-Disclosure] Re: HTTP Response Splitting and SQL injection in megabbs forum
Next by thread: [Full-Disclosure] SQL injection in BroadBoard Instant ASP Message Board
Index(es):
- Date
- Thread