Quote:
Originally Posted by SmokeyTheBear
thanks for the heads up..
i'm on the fence about people reporting exploits this way ..
i do believe its nice to inform the script owners first but i have to disagree with others about not reporting it on gfy..
gfy is often the quickest way to solve these kinds of problems..
exploits such as this are often slow to be fixed ( or ignored ) by the owners if left entirely up to them, a push is helpfull.
|
I'm on the fence, too.
On one side, GFY is quicker than emailing them, plus it probably reaches more users than an upgrade of their script would (hell, I'm pretty sure that months from now, most users will still use the exploitable version).
On the other side, this ensures that within a week, hundreds if not thousands of sites will be exploited.
Then, on yet another side... anyone who uses that crappy script kinda deserves whatever happens. Linkex is a complete piece of shit, and always has been.