On Wednesday 05 April 2006 01:19, Paul M Foster wrote:
> steve szmidt wrote:
> So what you're saying is that they assume whatever they enter will get
> posted onto the website? And someone will be dumb enough to see it and
> perhap click on it, thence get hacked?
No. You have a form that accepts data, then get's processed. If that process
of processing data can be fooled into accepting commands...
> But this doesn't answer the question of whether it's possible to
> automate the process of filling out the forms.
Sure it's possible. Has been done for eons.
> The forms are PHP and use
> POST rather than GET.
Good.
> Paul
--Steve Szmidt
"For evil to triumph all that is needed is for good men to do nothing. Edmund Burke ----------------------------------------------------------------------- This list is provided as an unmoderated internet service by Networked Knowledge Systems (NKS). Views and opinions expressed in messages posted are those of the author and do not necessarily reflect the official policy or position of NKS or any of its employees.
This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 20:31:55 EDT