What is WebDNA

WebDNA is a scripting and database system designed to easily build web applications.

WebDNA and BioType

BioType service is a biometric keystroke dynamic system. It will be part of WebDNA 8.5

Download WebDNA

Download WebDNA freeware, try it and register later if you want.

WebDNA resources

The list of all WebDNA instructions.
WebDNA
Software Corporation
Search WebDNA Site
 Menu


HOME


DOWNLOADS


LEARN


EDUCATION


NEWS


COMMUNITY


STORE


SUPPORT


CONTACT

Re: [WebDNA] WebDNA code displaying on page

This WebDNA talk-list message is from

2012


It keeps the original formatting.
numero = 110002
interpreted = N
texte = --Boundary-01=_pBOyQMTww/PBxQs Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit So it still exists in the current non-fcgi versions, correct? Sincerely, Kenneth Grome WebDNA Solutions http://www.webdnasolutions.com WebDNA Programming and Linux Server Administration > Exact, that was fixed in WebDNA.fcgi few years ago > > - chris > > On Dec 12, 2012, at 17:44, Terry Wilson wrote: > > This exploit was discovered a few years back, but I > > thought it was fixed, or a fix was announced or > > something. I forget. > > > > Terry > > > >> Hi, > >> > >> I am running V6.2 on CentOS 5.8 and have found > >> instances where WebDNA code displays on a page if > >> certain WebDNA tags are in the URL. > >> > >> I thought it was something I was doing but this > >> appears to happen on the www.webdna.us site as well. > >> > >> http://www.webdna.us/page.dna?text= > >> takes you to a page that shows only webdna code > >> > >> http://www.webdna.us/page.dna?numero=56&text= > >> adds a line of text above the navigation row in the > >> red background (need to mouse over to see it - text > >> is same color as red background) > >> > >> > >> I first experienced this with != and fixed it by > >> putting a RewriteRule in an .htaccess file in the > >> site's root folder > >> > >> Today I tried a few other tags and found others. I > >> haven't checked all the tags just a handful. > >> > >> text= > >> math= > >> format= > >> > >> Anyone else experience this, have a fix or suggestion? > >> > >> Thanks, > >> Steve > >> > >> > >> ------------------------------------------------------ > >> --- This message is sent to you because you are > >> subscribed to the mailing list . > >> To unsubscribe, E-mail to: > >> archives: http://mail.webdna.us/list/talk@webdna.us > >> Bug Reporting: support@webdna.us > > --------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list . > To unsubscribe, E-mail to: > archives: http://mail.webdna.us/list/talk@webdna.us > Bug Reporting: support@webdna.us --Boundary-01=_pBOyQMTww/PBxQs Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: 7bit

So it still exists in the current non-fcgi versions, correct?


Sincerely,

Kenneth Grome

WebDNA Solutions

http://www.webdnasolutions.com

WebDNA Programming and Linux Server Administration





> Exact, that was fixed in WebDNA.fcgi few years ago

>

> - chris

>

> On Dec 12, 2012, at 17:44, Terry Wilson <terry@terryfic.com> wrote:

> > This exploit was discovered a few years back, but I

> > thought it was fixed, or a fix was announced or

> > something. I forget.

> >

> > Terry

> >

> >> Hi,

> >>

> >> I am running V6.2 on CentOS 5.8 and have found

> >> instances where WebDNA code displays on a page if

> >> certain WebDNA tags are in the URL.

> >>

> >> I thought it was something I was doing but this

> >> appears to happen on the www.webdna.us site as well.

> >>

> >> http://www.webdna.us/page.dna?text=

> >> takes you to a page that shows only webdna code

> >>

> >> http://www.webdna.us/page.dna?numero=56&text=

> >> adds a line of text above the navigation row in the

> >> red background (need to mouse over to see it - text

> >> is same color as red background)

> >>

> >>

> >> I first experienced this with != and fixed it by

> >> putting a RewriteRule in an .htaccess file in the

> >> site's root folder

> >>

> >> Today I tried a few other tags and found others. I

> >> haven't checked all the tags just a handful.

> >>

> >> text=

> >> math=

> >> format=

> >>

> >> Anyone else experience this, have a fix or suggestion?

> >>

> >> Thanks,

> >> Steve

> >>

> >>

> >> ------------------------------------------------------

> >> --- This message is sent to you because you are

> >> subscribed to the mailing list <talk@webdna.us>.

> >> To unsubscribe, E-mail to: <talk-leave@webdna.us>

> >> archives: http://mail.webdna.us/list/talk@webdna.us

> >> Bug Reporting: support@webdna.us

>

> ---------------------------------------------------------

> This message is sent to you because you are subscribed to

> the mailing list <talk@webdna.us>.

> To unsubscribe, E-mail to: <talk-leave@webdna.us>

> archives: http://mail.webdna.us/list/talk@webdna.us

> Bug Reporting: support@webdna.us

--Boundary-01=_pBOyQMTww/PBxQs-- Associated Messages, from the most recent to the oldest:

    
  1. Re: [WebDNA] WebDNA code displaying on page (WebDNA Solutions 2012)
  2. Re: [WebDNA] WebDNA code displaying on page (Tom Duke 2012)
  3. Re: [WebDNA] WebDNA code displaying on page (Donovan Brooke 2012)
  4. Re: [WebDNA] WebDNA code displaying on page (Donovan Brooke 2012)
  5. Re: [WebDNA] WebDNA code displaying on page (Govinda 2012)
  6. Re: [WebDNA] WebDNA code displaying on page (Michael Davis 2012)
  7. Re: [WebDNA] WebDNA code displaying on page (Steve Raslevich 2012)
  8. Re: [WebDNA] WebDNA code displaying on page (Michael Davis 2012)
  9. Re: [WebDNA] WebDNA code displaying on page (Steve Raslevich 2012)
  10. Re: [WebDNA] WebDNA code displaying on page (Daniel Meola 2012)
  11. Re: [WebDNA] WebDNA code displaying on page (Brian Fries 2012)
  12. Re: [WebDNA] WebDNA code displaying on page (Steve Raslevich 2012)
  13. Re: [WebDNA] WebDNA code displaying on page (Steve Raslevich 2012)
  14. Re: [WebDNA] WebDNA code displaying on page (WebDNA Solutions 2012)
  15. Re: [WebDNA] WebDNA code displaying on page (Daniel Meola 2012)
  16. Re: [WebDNA] WebDNA code displaying on page (christophe.billiottet@webdna.us 2012)
--Boundary-01=_pBOyQMTww/PBxQs Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit So it still exists in the current non-fcgi versions, correct? Sincerely, Kenneth Grome WebDNA Solutions http://www.webdnasolutions.com WebDNA Programming and Linux Server Administration > Exact, that was fixed in WebDNA.fcgi few years ago > > - chris > > On Dec 12, 2012, at 17:44, Terry Wilson wrote: > > This exploit was discovered a few years back, but I > > thought it was fixed, or a fix was announced or > > something. I forget. > > > > Terry > > > >> Hi, > >> > >> I am running V6.2 on CentOS 5.8 and have found > >> instances where WebDNA code displays on a page if > >> certain WebDNA tags are in the URL. > >> > >> I thought it was something I was doing but this > >> appears to happen on the www.webdna.us site as well. > >> > >> http://www.webdna.us/page.dna?text= > >> takes you to a page that shows only webdna code > >> > >> http://www.webdna.us/page.dna?numero=56&text= > >> adds a line of text above the navigation row in the > >> red background (need to mouse over to see it - text > >> is same color as red background) > >> > >> > >> I first experienced this with != and fixed it by > >> putting a RewriteRule in an .htaccess file in the > >> site's root folder > >> > >> Today I tried a few other tags and found others. I > >> haven't checked all the tags just a handful. > >> > >> text= > >> math= > >> format= > >> > >> Anyone else experience this, have a fix or suggestion? > >> > >> Thanks, > >> Steve > >> > >> > >> ------------------------------------------------------ > >> --- This message is sent to you because you are > >> subscribed to the mailing list . > >> To unsubscribe, E-mail to: > >> archives: http://mail.webdna.us/list/talk@webdna.us > >> Bug Reporting: support@webdna.us > > --------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list . > To unsubscribe, E-mail to: > archives: http://mail.webdna.us/list/talk@webdna.us > Bug Reporting: support@webdna.us --Boundary-01=_pBOyQMTww/PBxQs Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: 7bit

So it still exists in the current non-fcgi versions, correct?


Sincerely,

Kenneth Grome

WebDNA Solutions

http://www.webdnasolutions.com

WebDNA Programming and Linux Server Administration





> Exact, that was fixed in WebDNA.fcgi few years ago

>

> - chris

>

> On Dec 12, 2012, at 17:44, Terry Wilson <terry@terryfic.com> wrote:

> > This exploit was discovered a few years back, but I

> > thought it was fixed, or a fix was announced or

> > something. I forget.

> >

> > Terry

> >

> >> Hi,

> >>

> >> I am running V6.2 on CentOS 5.8 and have found

> >> instances where WebDNA code displays on a page if

> >> certain WebDNA tags are in the URL.

> >>

> >> I thought it was something I was doing but this

> >> appears to happen on the www.webdna.us site as well.

> >>

> >> http://www.webdna.us/page.dna?text=

> >> takes you to a page that shows only webdna code

> >>

> >> http://www.webdna.us/page.dna?numero=56&text=

> >> adds a line of text above the navigation row in the

> >> red background (need to mouse over to see it - text

> >> is same color as red background)

> >>

> >>

> >> I first experienced this with != and fixed it by

> >> putting a RewriteRule in an .htaccess file in the

> >> site's root folder

> >>

> >> Today I tried a few other tags and found others. I

> >> haven't checked all the tags just a handful.

> >>

> >> text=

> >> math=

> >> format=

> >>

> >> Anyone else experience this, have a fix or suggestion?

> >>

> >> Thanks,

> >> Steve

> >>

> >>

> >> ------------------------------------------------------

> >> --- This message is sent to you because you are

> >> subscribed to the mailing list <talk@webdna.us>.

> >> To unsubscribe, E-mail to: <talk-leave@webdna.us>

> >> archives: http://mail.webdna.us/list/talk@webdna.us

> >> Bug Reporting: support@webdna.us

>

> ---------------------------------------------------------

> This message is sent to you because you are subscribed to

> the mailing list <talk@webdna.us>.

> To unsubscribe, E-mail to: <talk-leave@webdna.us>

> archives: http://mail.webdna.us/list/talk@webdna.us

> Bug Reporting: support@webdna.us

--Boundary-01=_pBOyQMTww/PBxQs-- WebDNA Solutions

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

japanese characters (1997) firewall ports for Mac OS X/WebCatalog (2001) WebCat2_Mac RETURNs in .db (1997) Incrementing a number (1998) Running 2 two WebCatalog.acgi's (1996) cybercash (1998) Re2: frames & carts (1997) WebCatalog Mac 2.1b3 (1997) [Announce]: Web server security and password protection (1997) WebCat/CyberStudio Compatibility (1998) Extended [Convertchars] needed (1997) adding time (2003) Stopping bad HTML propagation ? (1997) WebDNA Solutions ... sorry! (1997) typhoon... (1997) Out of the woodwork (2007) $flushdatabases question ... (1998) Unexpected error (1997) calculating tax rates, mail order solutions and version 2 (1997) WebCat2 beta 11 - new prefs ... (1997)