Bugtraq mailing list archives

Re: Drupal 7.14 <= Full Path Disclosure Vulnerability

From: pereira () secbiz de
Date: Thu, 10 May 2012 13:38:03 GMT

Please note that the hotfix should be:

if(is_array($path)) { die(); }

I already submitted an update to the mailing list.

Current thread:

Drupal 7.14 <= Full Path Disclosure Vulnerability pereira (May 10)
- <Possible follow-ups>
- Re: Drupal 7.14 <= Full Path Disclosure Vulnerability pereira (May 10)