[Full-disclosure] sourceforge entry point seems still active.
andfarm at gmail.com
Tue Jan 25 19:47:12 GMT 2011
On 2011-01-24, at 12:08, exploit dev wrote:
> Anyway, I'm sorry repeat my message. I think that this issue is a bit
> critical but I don't receive still any feedback,
It's not particularly critical by any means. SourceForge projects all have their own web space, and there are doubtless a bunch of them running vulnerable versions of software. These sites are relatively isolated, and don't have write access to the project's SCM or downloads.
Full-Disclosure is hosted and sponsored by Secunia.