I slipped up and let a post through to the list by mistake that reported a
hole in a specific site. Whilst webappsec is an open discussion about all
things web application security, it certainly isn't a reporting mechanism on
holes in sites and I wouldn't normally have let it through. It was my slip
up. Other lists exist for reporting holes in software (commercial off the
shelf or otherwise) and these kinds of posts should be directed at them.

If you want to learn about SQl injection best check out www.sqlsecurity.com
or http://www.owasp.org/projects/asac/iv-sqlinjection.shtml

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]