Granny's Programming Pearls
"inside of every large program is a small program struggling to get out"
JavaRanch.com/granny.jsp
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Liutauras Vilda
  • Tim Cooke
  • Jeanne Boyarsky
  • Bear Bibeault
Sheriffs:
  • Knute Snortum
  • paul wheaton
  • Devaka Cooray
Saloon Keepers:
  • Tim Moores
  • Stephan van Hulst
  • Ron McLeod
  • Piet Souris
  • Ganesh Patekar
Bartenders:
  • Tim Holloway
  • Carey Brown
  • salvin francis

How to get RC2 or RC1 version of JForum?

 
Greenhorn
Posts: 3
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
hello,
i am looking for Vulnerable version of JForum, here is the link which shows that some versiona of JForum are vulnerable:
http://www.securityfocus.com/bid/10241

Is there any repository with all previous releases?

Cheers!
 
Rancher
Posts: 43011
76
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
It's been years since JForum was released. A security warning from 2004 most likely no longer applies.

Why are you looking for a version that is vulnerable?
 
amughost lee
Greenhorn
Posts: 3
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Yes, I know, I am just looking for open source web app which is using MySQL database and has SQL Injection vulnerabilities
to try out my plugin on the real web application.
My plugin should prevent SQL injection, XSS, path traveral etc. malicious attacks.
 
Ulf Dittmer
Rancher
Posts: 43011
76
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
If you know how to prevent such vulnerabilities, then it should be easy to write a web app that exhibits those vulnerabilities, no? But more importantly, I don't think older versions of JForum are available publicly. You could try your luck by contacting the author.
 
amughost lee
Greenhorn
Posts: 3
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Yes, I have tested on my apps, but I want to test on Open Source apps, ok thanks anyways.
 
It's weird that we cook bacon and bake cookies. Eat this tiny ad:
Enterprise-grade Excel API for Java
https://products.aspose.com/cells/java
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!