Message150622
Except, it's a totally non-scalable approach. People have vulnerabilities all over their sites which they don't realize. Some examples:
django-taggit (an application I wrote for handling tags) parses tags out an input, it stores these in a set to check for duplicates. It's vulnerable.
Another site I'm writing accepts JSON POSTs, you can put arbitrary keys in the JSON. It's vulnerable. |
|
Date |
User |
Action |
Args |
2012-01-04 17:44:51 | alex | set | recipients:
+ alex, lemburg, gvanrossum, barry, georg.brandl, terry.reedy, jcea, pitrou, vstinner, christian.heimes, benjamin.peterson, eric.araujo, Arfrever, dmalcolm, Mark.Shannon, Zhiping.Deng, PaulMcMillan |
2012-01-04 17:44:50 | alex | set | messageid: <1325699090.97.0.797030531574.issue13703@psf.upfronthosting.co.za> |
2012-01-04 17:44:50 | alex | link | issue13703 messages |
2012-01-04 17:44:50 | alex | create | |
|