[VIM] bit amusing (Contact Form 2.00.02)

security curmudgeon jericho at attrition.org
Wed Jun 20 07:15:08 UTC 2007

---------- Forwarded message ----------

[009] - Contact Form 2.00.02
   by deadsea (http://freshmeat.net/users/deadsea/)
   Tue, Jun 19th 2007 11:05

Internet :: WWW/HTTP
Internet :: WWW/HTTP :: Dynamic Content

About: Contact Form is a Perl script that allows users  to send you email
through a Web interface. It  is designed to thwart spammers by not
allowing email to be sent to unknown  addresses, or revealing the
addresses that it  knows. In addition to this, it does not contain  cross
site scripting vulnerabilities or allow  arbitrary code to be run on the
host. It  provides adequate information in the headers  it sends to trace
spammers, can check the  validity of all data before sending emails, and
features a customizable interface that allows  for arbitrary fields.

Changes: This release fixes an HTML escaping issue that caused a cross
site scripting (XSS) vulnerability.

License: GNU General Public License (GPL)

URL: http://freshmeat.net/projects/easycontactform/

More information about the VIM mailing list