oss-sec mailing list archives
CVE request: tikiwiki < 2.0
From: Hanno Böck <hanno () hboeck de>
Date: Tue, 12 Aug 2008 15:10:05 +0200
From the release notes: * Joshua Morin reported several issues * Jesús Olmos at Internet Security Auditors (external link) reported a leak which could be used to disclose path and PHP configuration. * Special thanks to Philippe Gamache (external link) & Damien Seguy (external link) for their advice (though that doesn't tell much...) At least the second one is specific enough to deserve a cve. -- Hanno Böck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber/Mail: hanno () hboeck de
Attachment:
signature.asc
Description: This is a digitally signed message part.
Current thread:
- CVE request: tikiwiki < 2.0 Hanno Böck (Aug 12)
- Re: CVE request: tikiwiki < 2.0 Steven M. Christey (Aug 12)