Web Application Worms

Myth or reality? This paper at imperva.com shows how relatively simple techniques can be used to automatically find and attack vulnerable application servers. Looks plausible enough to me.

You’ve been warned: use a serious framework for your next project ;-)

This entry was posted on Wednesday, March 31st, 2004 at 8:00 am and is filed under The Web. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.

One Response to Web Application Worms

Sylvain Wallez says:

March 31, 2004 at 2:53 pm

Well, even if Cocoon doesn’t have some of the wide-open holes that some systems have, protecting from SQL injection is not built into the framework and requires careful inspection of direct transmission of request parameters to SQL queries…

Anyway, thanks for the pointers, this is an interesting read!

ls /var/categories

head -7 < twitter

@glaforge @bluxte @ponceto91 Heureusement que le temps s'est rafraîchi un peu, sinon je dirais qu'Hongrie. 2 weeks ago

It's time to start BYOFA: Bring Your Own Funky Acronyms. 2 weeks ago

@FredericJacobs @rte_france @ademe @chplusplus @maemst @linkedktk @hannesgassert I agree that the state should do i… twitter.com/i/web/status/1… 2 weeks ago

@FredericJacobs @rte_france @ademe Beyond hoping, what can we do as citizens to help make it happen? Alerting peopl… twitter.com/i/web/status/1… 2 weeks ago

@simonetripodi Agreed, but we shouldn't make it easier! 2 weeks ago

@frm1025 Yes, though I've found comparing the ratio of private vs channel messages in Slack or any other platform t… twitter.com/i/web/status/1… 2 weeks ago

I recently realized that remote work makes it much easier to have "secret groups" that people might be or feel excl… twitter.com/i/web/status/1… 2 weeks ago

bertrand’s brain grep