Posted on: 04/09/04 06:02am
By: bieffe
hello guys, recently.. my friend found that, there are inproper php code in file index.php ( topic section ) that allow remote command. currently, i'm using geeklog 1.3.9 final release. i will ask from my friend abt that, & hoping that, i can attach the inproper code here.. & i hope that, geeklog developer check this out.
regards,
bieffe
p/s: sorry abt my bad english ..
inproper index.php coding..
Posted on: 04/09/04 06:08am
By: Dirk
Please send security issues to geeklog-security@lists.geeklog.net
See our
Security page[*1] for details.
bye, Dirk
inproper index.php coding..
Posted on: 04/12/04 01:03pm
By: Dirk
For the record: It turned out to be a misinterpretation of the webserver logfiles.
Someone did actually try some sort of attack, but Geeklog caught it and displayed a friendly error message instead.
bye, Dirk