Project

General

Profile

Actions
Copy link

Bug #18934

closed

Default value of fileDenyPattern allows arbitrary code execution on Apache

Added by Ingmar Schlecht over 16 years ago. Updated over 14 years ago.

Status:
Closed
Priority:
Should have
Assignee:
-
Category:
-
Target version:
-
Start date:
2008-06-11
Due date:
% Done:

0%

Estimated time:
TYPO3 Version:
4.2
PHP Version:
4.3
Tags:
Complexity:
Is Regression:
Sprint Focus:

Description

See http://typo3.org/teams/security/security-bulletins/typo3-20080611-1/

(issue imported from #M8674)

Files

Download all files
security_filedenypattern_41branch_v4.diff (14.7 KB) security_filedenypattern_41branch_v4.diff Administrator Admin, 2008-06-11 08:23
security_filedenypattern_42branch_v4.diff (16.4 KB) security_filedenypattern_42branch_v4.diff Administrator Admin, 2008-06-11 08:23
Actions
Copy link

Also available in: Atom PDF