|
|
|
|
|
|
by obnauticus
634 days ago
|
|
|
Agreed. The breakdown is indeed pretty poor IIRC. Generally you use these disclosures to make directional decisions about infrastructure. The list of fixed and disclosed CVEs combined with the legacy PHP code base doesn’t really pass the security sniff test. You really wouldn’t know for sure without doing a full code audit. |
|
|