Re: RedLevel Advisory #23 - SalesCart Shopping Cart SQL Injection Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: RedLevel Advisory #23 - SalesCart Shopping Cart SQL Injection Vulnerability
From: Jon Ribbens <jon+bugtraq2@xxxxxxxxxxxxxxxxx>
Date: Fri, 15 Jun 2007 00:27:29 +0100
In-reply-to: <32FE602A-E73A-4203-9E2C-71A9825F4B7F@xxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mail-followup-to: bugtraq@xxxxxxxxxxxxxxxxx
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <20070613173620.30054.qmail@xxxxxxxxxxxxxxxxx> <32FE602A-E73A-4203-9E2C-71A9825F4B7F@xxxxxxxxxxxxxx>
User-agent: Mutt/1.5.13 (2006-08-11)

On Thu, Jun 14, 2007 at 05:31:14PM -0400, John M. Martinelli wrote:
> It is up to the editors of the board to decide whether this
> vulnerability is fact or fiction. They don't post incorrect  
> vulnerability information.

Um, no, actually they mostly just post whatever you send them.
Whether this is a good thing or not is a matter for debate.

References:
- Re: RedLevel Advisory #23 - SalesCart Shopping Cart SQL Injection Vulnerability
  - From: accounting
- Re: RedLevel Advisory #23 - SalesCart Shopping Cart SQL Injection Vulnerability
  - From: John M. Martinelli

Prev by Date: Re: Windows Oday release
Next by Date: [SECURITY] [DSA 1314-1] New open-iscsi packages fix several vulnerabilities
Previous by thread: Re: RedLevel Advisory #23 - SalesCart Shopping Cart SQL Injection Vulnerability
Next by thread: [security bulletin] HPSBUX02087 SSRT4728 rev.5 - HP-UX running TCP/IP Remote Denial of Service (DoS)
Index(es):
- Date
- Thread