mailing list archives
Re: On product vulnerability history and vulnerability complexity
From: Javor Ninov <drfrancky () securax org>
Date: Tue, 04 Apr 2006 10:49:02 +0300
Sorry if i sound rude but:
Gadi Evron wrote:
Looking even at web applications and their history one can easily tell if:
1. They are professionally written.
2. The vulnerabilities seen before and the ones we could find are not
trivial or really say anything about the coder.
That's how we chose WordPress for blogging.
So you mean that XSS is not trivial and difficult to spot ?
For today code XSS is unacceptable and speaks very for the author.
Javor Ninov aka DrFrancky
Description: OpenPGP digital signature