Re: Multiple CSRF in SimplePHPBlog

From: Hanno =?utf-8?q?B=C3=B6ck?= <ml@hboeck.de>
To: bugtraq@securityfocus.com
Cc:
Subject: Re: Multiple CSRF in SimplePHPBlog
Date:


Am Mittwoch 17 Oktober 2007 schrieb deme@hackish.eu:
> SimplePHPBlog
> Cross Site Request Forgeries
> Tested on v0.4.9

What's the purpose on reporting issues on old versions?
I don't know simplephpblog, but a quick look on their page tells me that 
they've released a bunch of security related updates since 0.4.9. Their 
current one is 0.5.1.

-- 
Hanno Böck         Blog:   http://www.hboeck.de/
GPG: 3DBD3B20         Jabber: hanno@hboeck.de




Copyright © 1995-2018 LinuxRocket.net. All rights reserved.