[Clipart] Full path disclosure
Jon Phillips
jon at rejon.org
Thu Feb 1 10:58:50 PST 2007
On Wed, 2007-01-31 at 23:04 -0800, Open Clip Art Library Feedback Form
wrote:
> Name: Raphael HUCK
> E-mail: raphael.huck at free.fr
>
>
> I've found a full path disclosure in MediaWiki, and Open Clip Art is
> vulnerable:
>
> http://openclipart.org/wiki/skins/Simple.deps.php
>
> I advise to check revision 19681 and patch :
>
> http://svn.wikimedia.org/viewvc/mediawiki?view=rev&revision=19681
>
Thanks for this...updating mediawiki installation...
Jon
--
Jon Phillips
San Francisco, CA
USA PH 510.499.0894
jon at rejon.org
http://www.rejon.org
MSN, AIM, Yahoo Chat: kidproto
Jabber Chat: rejon at gristle.org
IRC: rejon at irc.freenode.net
More information about the clipart
mailing list