this post was submitted on 21 Aug 2023
3 points (80.0% liked)

cybersecurity

3030 readers
2 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Enjoy!

founded 1 year ago
MODERATORS
 

In case you need a quick laugh, have a look at this CVE report.

For context: quote DVWA Repo:

Damn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, [...].

top 3 comments
sorted by: hot top controversial new old
[–] [email protected] 3 points 1 year ago (1 children)

Saved you a click:

REJECTED CVE has been marked "REJECT" in the CVE List. These CVEs are stored in the NVD, but do not show up in search results.

[–] [email protected] 2 points 1 year ago* (last edited 1 year ago) (1 children)

Originally was:

"DVWA v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at blind\source\high.php."

Source report: https://github.com/KLSEHB/vulnerability-report/blob/c1f3f27286e435d1bd5893a5fea2ffbe9fb55cbd/Dvwa_vulnerability

[–] [email protected] 1 points 1 year ago

I thought this would be visible with my link. Specifically shared the "show changes" Link but that doesn't seem to work.