An old version of one of my scripts has an SQL vulnerability. It has been known about for years and was patched ages ago.
Unfortunately it is listed one one of those security databases that seems to get syndicated over hundreds of sites. This means that details of the vulnerability are everywhere.
Somebody who runs the script has received an email from McAfee while they were scanning his site for PCI compliance. They pointed this vulnerability out to him. Even they didn't seem to notice that this was patched ages and ages ago.
I really don't like details like this spread all over the Internet.
Is there anything I can do about it? Nobody ever seems to give you an opportunity to put your side of the story forward.