projects / ikiwiki / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: cb7d6a8) | patch
* Fix a security hole that allowed a web user to edit images and other
authorjoey <joey@0fa5a96a-9a0e-0410-b3b2-a0fd24251071>
Sat, 10 Feb 2007 20:37:36 +0000 (20:37 +0000)
committerjoey <joey@0fa5a96a-9a0e-0410-b3b2-a0fd24251071>
Sat, 10 Feb 2007 20:37:36 +0000 (20:37 +0000)
commit29e6ff03b078a0c6abb659c9e81343d523d3b13a
treea628793a36bdd921bd1e89ff4318ac243d1dc4fetree | snapshot
parentcb7d6a88adef4bec348f0e43fbd3dc98b4c25b05commit | diff
* Fix a security hole that allowed a web user to edit images and other
  non-page format files in the wiki. To exploit this, the file already had
  to exist in the wiki, and the web user would need to somehow use the web
  based editor to replace it with malicious content.
  (Sorry Josh, this means you can't edit style.css directly anymore,
  although I do appreciate your fixes, actually..)
IkiWiki/CGI.pm diff | blob | blame | history
debian/changelog diff | blob | blame | history
po/bg.po diff | blob | blame | history
po/cs.po diff | blob | blame | history
po/es.po diff | blob | blame | history
po/fr.po diff | blob | blame | history
po/gu.po diff | blob | blame | history
po/ikiwiki.pot diff | blob | blame | history
po/pl.po diff | blob | blame | history
po/sv.po diff | blob | blame | history
po/vi.po diff | blob | blame | history
Ikiwiki patches