Quote:
|
Originally Posted by emmanuelle
I am really getting fed up with these companies being deliberately neglectful, it makes them willful accomplices.
Mind sharing to protect the innocent?
|
Let me wait to see what happens since someone else reported it to bugtraq.
However, the code is a complete mess -- in addition to security issues, there are sql queries passed through the url -- almost inviting sql injection attacks.