There's nothing to disclose. I haven't given out anything, and it's blatantly apparent. There is not one single security measure in place within the code, so I would have to disclose the entire code base.
I'm not trying to make trouble here, I'm just warning people about the danger of using BakeSale "straight out of the box". I would be fine if they were marketing it as a basic starting point for building a shopping cart, but they're making it out to be a complete product. On Jul 31, 7:30 pm, "Dr. Tarique Sani" <[EMAIL PROTECTED]> wrote: > On 8/1/07, housebolt <[EMAIL PROTECTED]> wrote: > > > > > I was just taking a look at bakesale for some ideas on building my own > > shopping cart. > > > Please don't use bakesale in its current form without looking into its > > security issues. > > Did you contact the deveopers of Bakesale about this before disclosing here? > > If yes what was the response? > > Tarique > > -- > ============================================================= > Cheesecake-Photoblog:http://cheesecake-photoblog.org > PHP for E-Biz:http://sanisoft.com > ============================================================= --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Cake PHP" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cake-php?hl=en -~----------~----~----~----~------~----~------~--~---
