There was an error!Your code was not submited. On Wed, Nov 23, 2011 at 12:11 PM, Press - Dognædis <[email protected]>wrote:
> Dear FullDisclosure, > > CodeV is a static code analysis tool (currently for php only, but soon > to be developed to other languages) developed by Dognaedis > (https://www.dognaedis.com/) to offer a tool to integrate in the > development of the life cycle of software in order to detect > vulnerabilities that arise from bad input validations as soon as they > hit the code. The tool has a public demo version that is limited to a > script with 250 lines of code and is available at > https://codev.dognaedis.com/. > > We analyzed some Open Source software to test our own tool and > discovered 31 new vulnerabilities in 5 different opensource softwares. > Following responsible disclosures of discovered vulnerabilities > throughout CodeV's Open Source Software analysis, we are here reporting > all the vulnerabilities discovered as soon as possible to the community, > offering security not only to our clients but to the entire public. All > the vulnerabilities brought to public previously followed the necessary > disclosure protocol to the responsible teams. The vulnerabilities > discovered can be found in https://www.dognaedis.com/vulns/. > > Thank you for your time and we hope you enjoy CodeV. > > -- > Press - Dognaedis > Dognædis, Coimbra - Portugal > http://www.dognaedis.com > > > DECLARAÇÃO DE PRIVACIDADE: > Esta mensagem é estritamente confidencial e deve ser acedida somente > pelas pessoas e/ou entidades a quem ela foi endereçada, não sendo > permitida a divulgação, modificação, visualização, ou qualquer outro > tipo de utilização desta mensagem por terceiros. Caso não seja um dos > destinatários, a Dognædis agradece que informe o remetente o mais > rapidamente possível sobre o extravio ocorrido. > > DISCLAIMER: > This message is confidential in any way, and can only be accessed by the > persons or entities to whom it is addressed. If you are not one of them, > Dognædis will thank you if you inform the author, as soon as possible, > about the error that ocurred. It is totally forbidden the disclosure, > modification, visualization, or other kind of use of the message and the > respective contents to those who are not addressed herein. > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -- Ferenc Kovács @Tyr43l - http://tyrael.hu
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
