Bugtraq mailing list archives
Re: SQL injection vulnerability in WebDB
From: security curmudgeon <jericho () attrition org>
Date: Mon, 5 Jul 2010 13:25:55 -0500 (CDT)
Hello, For both of your WebDB advisories, you say: : Product: WebDB : Vendor: Lois Software : Vulnerable Version: 2.0a and Probably Prior Versions : Status: Fixed by Vendor : Risk level: High : Solution: There is no need for anybody to upgrade to the latest version. Why is there no need for anybody to upgrade to the latest version on a "High risk" vulnerability? In addition, could you please include vendor URLs in all of your advisories? Thanks
Current thread:
- Re: SQL injection vulnerability in WebDB security curmudgeon (Jul 06)