[Savannah-cvs] savannah ./ChangeLog frontend/php/docs/mrtg.php...

savannah-cvs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Savannah-cvs] savannah ./ChangeLog frontend/php/docs/mrtg.php...

From:	Mathieu Roy
Subject:	[Savannah-cvs] savannah ./ChangeLog frontend/php/docs/mrtg.php...
Date:	Fri, 25 Apr 2003 09:34:50 -0400

CVSROOT:        /cvsroot/savannah
Module name:    savannah
Changes by:     Mathieu Roy <address@hidden>    03/04/25 09:34:50

Modified files:
        .              : ChangeLog 
        frontend/php/docs: mrtg.php webalizer.php 
        frontend/php/include: utils.php 

Log message:
        In case of an apparently malicious url, do not try to rewrite the url 
but exit(); As noticed by babar, it's possible to play with the rewriting of 
the url to get something still malicious

CVSWeb URLs:
http://savannah.gnu.org/cgi-bin/viewcvs/savannah/savannah/ChangeLog.diff?tr1=1.372&tr2=1.373&r1=text&r2=text
http://savannah.gnu.org/cgi-bin/viewcvs/savannah/savannah/frontend/php/docs/mrtg.php.diff?tr1=1.11&tr2=1.12&r1=text&r2=text
http://savannah.gnu.org/cgi-bin/viewcvs/savannah/savannah/frontend/php/docs/webalizer.php.diff?tr1=1.26&tr2=1.27&r1=text&r2=text
http://savannah.gnu.org/cgi-bin/viewcvs/savannah/savannah/frontend/php/include/utils.php.diff?tr1=1.43&tr2=1.44&r1=text&r2=text

[Prev in Thread]

Current Thread

[Next in Thread]

[Savannah-cvs] savannah ./ChangeLog frontend/php/docs/mrtg.php..., Mathieu Roy <=

Prev by Date: [Savannah-cvs] savannah/frontend/php/bugs bug_utils.php
Next by Date: [Savannah-cvs] savannah/frontend/php/include utils.php
Previous by thread: [Savannah-cvs] savannah/frontend/php/bugs bug_utils.php
Next by thread: [Savannah-cvs] savannah/frontend/php/include utils.php
Index(es):
- Date
- Thread