BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
Re: Gekko <=0.8.2 (temp directory) Path Disclosure Nov 28 2007 11:22PM
J. Carlos Nieto (xiam menteslibres org)
Hi.

You forgot to mention that this happens only when Gekko is not installed
under Apache server.

The file temp/.htaccess contains the following lines:
Order Allow,Deny
Deny from all

So if you try to get any file under the "temp" directory it will trow
you a 403 error.

If you are using Apa...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus