Posted by shimmyshack on 03/26/07 16:52

On 26 Mar, 17:19, "Steve" <no....@example.com> wrote:
> | Ive glanced at the code, although all of it's not there, there are
> | background images, conf files, and so on, and I cant see the markup,
> | etc... it looks needlessly complex re email validation reg exp)and
> | header injection, but as I say I cant tell how the mailer script works
> | or whether its vulnerable or whether its the correct way to be doing
> | it, or what your functionality is for the user etc.. so I cant make
> | any definitive statements.
>
> hey shimmy,
>
> did you puruse the code i posted under phil buckman's 'Need a simple
> database for name and email only' thread?
>
> i'm interested in seeing what wholes you find in it.
>
> thx,
>
> me

sure, I'll take a look, but my girl friend wants me to "stop looking
on the bloody computer" and to play frisbie instead! catch you later

• Next in forum: Re: Reading remote Session ID
• Prev in forum: Re: Reading remote Session ID
• Thread view: Re: Reading remote Session ID

[Reply to this message]