On Dec 12, 2007 3:28 PM, <[EMAIL PROTECTED]> wrote: > Yes. We had a paid security audit done by SektionEins ( > http://www.sektioneins.de). SQL queries and getting user data has been > standardized so that they are cleaned before use making it very unlikely for > SQL injection and other attacks to happen. >
It took them 3 major versions and several years to get input sanitization standardized? I'm just surprised that phpBB is still around. _______________________________________________ UPHPU mailing list [email protected] http://uphpu.org/mailman/listinfo/uphpu IRC: #uphpu on irc.freenode.net
