[TYPO3-core] RFC: Path disclosure vulnerability fix (#2248)
Karsten Dambekalns
karsten at typo3.org
Sat Jan 14 09:54:23 CET 2006
Hi.
On Saturday 14 January 2006 03:07, Ingmar Schlecht wrote:
> This patch fixes the path disclosure in t3lib/config_default.php and
> also adds a check to showpic.php checking if the typo3conf directory
> exists. The same is also done in index_ts.php, so I think it should be
> in showpic.php, too.
+1
Karsten
--
Karsten Dambekalns
TYPO3 Association - Active Member
http://association.typo3.org/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 307 bytes
Desc: not available
Url : http://lists.netfielders.de/pipermail/typo3-team-core/attachments/20060114/0445411a/attachment.pgp
More information about the TYPO3-team-core
mailing list