Win a copy of Learn Spring Security (video course) this week in the Spring forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

How to get RC2 or RC1 version of JForum?

 
amughost lee
Greenhorn
Posts: 3
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
hello,
i am looking for Vulnerable version of JForum, here is the link which shows that some versiona of JForum are vulnerable:
http://www.securityfocus.com/bid/10241

Is there any repository with all previous releases?

Cheers!
 
Ulf Dittmer
Rancher
Pie
Posts: 42967
73
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
It's been years since JForum was released. A security warning from 2004 most likely no longer applies.

Why are you looking for a version that is vulnerable?
 
amughost lee
Greenhorn
Posts: 3
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Yes, I know, I am just looking for open source web app which is using MySQL database and has SQL Injection vulnerabilities
to try out my plugin on the real web application.
My plugin should prevent SQL injection, XSS, path traveral etc. malicious attacks.
 
Ulf Dittmer
Rancher
Pie
Posts: 42967
73
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
If you know how to prevent such vulnerabilities, then it should be easy to write a web app that exhibits those vulnerabilities, no? But more importantly, I don't think older versions of JForum are available publicly. You could try your luck by contacting the author.
 
amughost lee
Greenhorn
Posts: 3
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Yes, I have tested on my apps, but I want to test on Open Source apps, ok thanks anyways.
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic