BugTracker.NET 3.5.9

Rating: No reviews yet
Downloads: 225
Released: Nov 13, 2012
Updated: Nov 14, 2012 by ctrager
Dev status: Stable Help Icon

Recommended Download

Application BugTracker.NET 3.5.9
application, 2156K, uploaded Nov 14, 2012 - 225 downloads

Release Notes

  • IMPORTANT *************

Thanks to the folks at DefenseCode (http://defensecode.com) for
notifying me about some security vulnerabilities that I've tried
to fix in this release.

You should upgrade to this version.

I actually learned a whole new type of vulnerability from them, "HTTP
Response Splitting".

I'm not sure that the vulnerabilities they reported to me are that
scary mainly because many of them are in pages that only admins can
access. Given that in BugTracker.NET, an admin can run free-form
SQL, deleting data, etc, there's no need for an admin go through the
back door when he can go through the front door.

Reviews for this release

No reviews yet for this release.