On 15/02/2011 16:55, Michele Orru wrote:
2011/2/14 MustLivemustl...@websecurity.com.ua:
Hello Michele!
Few days ago I saw your advisory about Drupal's captcha. It's interesting
advisory, but I have one note concerning it - your research is very close to
mine ;-) (it concerns similar holes
wishes regards,
MustLive
Administrator of Websecurity web site
http://websecurity.com.ua
[Full-disclosure] [AntiSnatchOr] Drupal = 6.20 insecure Captcha defaults
PoC
Michele Orru antisnatchor at gmail.com
Thu Feb 10 12:15:01 GMT 2011
Drupal = 6.20 insecure Captcha defaults PoC
Name
On Tue, Feb 15, 2011 at 12:25 AM, Eyeballing Weev
eyeballing.w...@gmail.com wrote:
On Mon, Feb 14, 2011 at 4:54 PM, MustLive mustl...@websecurity.com.ua
wrote:
Hello Michele!
Few days ago I saw your advisory about Drupal's captcha. It's interesting
advisory, but I have one note concerning
of Websecurity web site
http://websecurity.com.ua
[Full-disclosure] [AntiSnatchOr] Drupal = 6.20 insecure Captcha defaults
PoC
Michele Orru antisnatchor at gmail.com
Thu Feb 10 12:15:01 GMT 2011
Drupal = 6.20 insecure Captcha defaults PoC
Name: Drupal = 6.20 insecure Captcha defaults PoC
Systems
On Mon, Feb 14, 2011 at 4:54 PM, MustLive mustl...@websecurity.com.uawrote:
Hello Michele!
Few days ago I saw your advisory about Drupal's captcha. It's interesting
advisory, but I have one note concerning it - your research is very close
to
mine ;-) (it concerns similar holes which I found
Drupal = 6.20 insecure Captcha defaults PoC
Name: Drupal = 6.20 insecure Captcha defaults PoC
Systems Affected: Drupal = 6.20 with Captcha = 2.3
Severity: Medium
Vendor: http://drupal.org
Advisory: http://antisnatchor.com/Drupal_insecure_Captcha_defaults_PoC
Author: Michele antisnatchor