Re: Sitellite cms <= 4.2.12 RFI Vuln

看板Bugtraq作者lux.時間19年前 (2007/06/19 23:39)推噓0(0推 0噓 0→)

留言0則, 0人參與討論串2/2 (看更多)

Sitellite requires .htaccess capabilities from Apache to configure its content server, so the .htaccess "deny from all" which we include in the PhpDocumentor folder effectively prevents this exploit for all Sitellite installations. PhpDocumentor is only accessible in Sitellite on the command line for the purposes of generating API documentation. This has been the case since Sitellite 4.2.0-rc3.

‣ 返回看板[ Bugtraq ] 臭蟲

‣ 更多 lux. 的文章

文章代碼(AID): #16T_Z000 (Bugtraq)

討論串 (同標題文章)

完整討論串 (本文為第 2 之 2 篇)：

排序：最新先 | 最舊先 | 留言數

Re: Sitellite cms <= 4.2.12 RFI Vuln Re: Sitellite cms <= 4.2.12 RFI Vuln

lux.

19年前, 06/19

Sitellite cms <= 4.2.12 RFI Vuln Sitellite cms <= 4.2.12 RFI Vuln

19年前, 06/17

文章代碼(AID): #16T_Z000 (Bugtraq)