Bugtraq mailing list archives
Re: DotClear Full Path Disclosure Vulnerability
From: Cedric Blancher <blancher () cartel-securite fr>
Date: Mon, 12 Feb 2007 22:28:46 +0100
Le dimanche 11 février 2007 à 23:20 +0000, raphael.huck () free fr a écrit :
Fatal error: Call to a member function fetch() on a non-object in /home/users/xxxx/dotclear/themes/xxx/list.php on line 34
Note it's not wise to display errors on a production website. However, when hosted, you don't necessarily have this choice... -- http://sid.rstack.org/ PGP KeyID: 157E98EE FingerPrint: FA62226DA9E72FA8AECAA240008B480E157E98EE
Hi! I'm your friendly neighbourhood signature virus. Copy me to your signature file and help me spread!
Current thread:
- DotClear Full Path Disclosure Vulnerability raphael . huck (Feb 12)
- Re: DotClear Full Path Disclosure Vulnerability Cedric Blancher (Feb 13)
- Re: DotClear Full Path Disclosure Vulnerability Raphaël HUCK (Feb 13)
- Re: DotClear Full Path Disclosure Vulnerability Cedric Blancher (Feb 13)
- Re: DotClear Full Path Disclosure Vulnerability Raphaël HUCK (Feb 13)
- Re: DotClear Full Path Disclosure Vulnerability Cedric Blancher (Feb 13)
- Re: DotClear Full Path Disclosure Vulnerability Gmail account (Feb 13)
- Re: DotClear Full Path Disclosure Vulnerability Raphaël HUCK (Feb 14)
- Re: DotClear Full Path Disclosure Vulnerability Cedric Blancher (Feb 14)
- Re: DotClear Full Path Disclosure Vulnerability Raphaël HUCK (Feb 13)
- Re: DotClear Full Path Disclosure Vulnerability Cedric Blancher (Feb 13)