Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: Gekko <=0.8.2 (temp directory) Path Disclosure
Nov 28 2007 11:22PM
J. Carlos Nieto (xiam menteslibres org)
You forgot to mention that this happens only when Gekko is not installed
under Apache server.
The file temp/.htaccess contains the following lines:
Deny from all
So if you try to get any file under the "temp" directory it will trow
you a 403 error.
If you are using Apa...
[ more ]
Copyright 2010, SecurityFocus