[VIM] bit amusing (Contact Form 2.00.02)
security curmudgeon
jericho at attrition.org
Wed Jun 20 07:15:08 UTC 2007
---------- Forwarded message ----------
[009] - Contact Form 2.00.02
by deadsea (http://freshmeat.net/users/deadsea/)
Tue, Jun 19th 2007 11:05
Internet
Internet :: WWW/HTTP
Internet :: WWW/HTTP :: Dynamic Content
About: Contact Form is a Perl script that allows users to send you email
through a Web interface. It is designed to thwart spammers by not
allowing email to be sent to unknown addresses, or revealing the
addresses that it knows. In addition to this, it does not contain cross
site scripting vulnerabilities or allow arbitrary code to be run on the
host. It provides adequate information in the headers it sends to trace
spammers, can check the validity of all data before sending emails, and
features a customizable interface that allows for arbitrary fields.
Changes: This release fixes an HTML escaping issue that caused a cross
site scripting (XSS) vulnerability.
License: GNU General Public License (GPL)
URL: http://freshmeat.net/projects/easycontactform/
More information about the VIM
mailing list