[pLog-svn] [Lifetype Vulnerability] Very Serious FileDisclosure Problem (read passwords/config whatever you want)
Oscar Renalias
oscar at renalias.net
Wed Feb 14 05:06:09 EST 2007
I thought that was the case, but there is a way to go around that. I
didn't know how to do it either until I saw proof...
On 14 Feb 2007, at 11:34, howard chen wrote:
> On 2/14/07, Mark Wu <markplace at gmail.com> wrote:
>> Hi Howard:
>>
>> Take a look at revision 4731 and 4732.
>>
>> Mark
>>
>
> i have look at the patch, but seems this is not as serious as it
> supposed to be?
>
> seems profile must be ended with a .template extension, the system is
> safe though.
> _______________________________________________
> pLog-svn mailing list
> pLog-svn at devel.lifetype.net
> http://limedaley.com/mailman/listinfo/plog-svn
>
More information about the pLog-svn
mailing list