Yet Another Forum.NET

Documentation

Support

Welcome Guest

Search | Active Topics | Members | Log In | Register

Yet Another Forum.NET » Members » xfz

Profile: xfz

WWW

About
Statistics
Last 10 Posts
Buddies

Name:	xfz (Add as buddy)
Gender:	None Specified

Joined:	Saturday, May 20, 2006(UTC)
Last Visit:	Thursday, June 01, 2006 6:58:31 PM(UTC)
Number of Posts:	3 [0.01% of all post / 0.00 posts per day]
Number of thanks	0 (View Thanks)
Number of times this user was thanked	0
Number of posts for which this user was thanked	0

View All Posts by User

Topic: YAF v1.0.1 is Released! Posted: Monday, May 29, 2006 5:07:55 PM(UTC)
xfz wrote: Neven wrote: xfz wrote: How about the security issues in YAF 1.0.1? We were trying to install it on our server but it dit complain about security breaches with the cross scripting (users can access the other users cookies). Are there any problems or could we trust it? Can you tell us how did you access other users' cookies? Was the cookie usefull? I was enable to abuse even my own cookie at localhost.... I haven't. I search on the internet for security problems and found out that you can do this. http://securitytracker.c...ts/2005/Apr/1013632.html
Topic: YAF v1.0.1 is Released! Posted: Monday, May 29, 2006 5:06:49 PM(UTC)
Neven wrote: xfz wrote: How about the security issues in YAF 1.0.1? We were trying to install it on our server but it dit complain about security breaches with the cross scripting (users can access the other users cookies). Are there any problems or could we trust it? Can you tell us how did you access other users' cookies? Was the cookie usefull? I was enable to abuse even my own cookie at localhost.... I haven't. I search on the internet for security problems and found out that you can do this.
Topic: YAF v1.0.1 is Released! Posted: Monday, May 29, 2006 3:19:24 PM(UTC)
How about the security issues in YAF 1.0.1? We were trying to install it on our server but it dit complain about security breaches with the cross scripting (users can access the other users cookies). Are there any problems or could we trust it?

Sort User Name

Name:

Forum Rank:

Joined

Posts

Location

YAFPro Theme Created by Jaben Cargman (Tiny Gecko)
Powered by YAF 1.9.4 RC4 | YAF © 2003-2010, Yet Another Forum.NET
This page was generated in 0.107 seconds.

411ASP.NET

Tiny Gecko - Raleigh, Cary, Durham, Chapel Hill .NET/C#/ASP.NET Software and Web Development

YetAnotherForum.NET Copyright © 2010 Tiny Gecko.