'Twas brillig, and GeorgeNLog at 20/02/09 09:14 did gyre and gimble:
In other hand, I'm reading about LFI but don't understand where to fit this
into a situation where a user can set the script path. Could you explain a
real scenario where the user provides this (the script path where he wants
to
'Twas brillig, and Matthew Weier O'Phinney at 18/02/09 13:07 did gyre
and gimble:
-- Colin Guthrie wrote
(on Wednesday, 18 February 2009, 09:09 AM +):
'Twas brillig, and Wil Sinclair at 18/02/09 03:51 did gyre and gimble:
The Zend Framework team has been notified of a potential Local File
-- Colin Guthrie wrote
(on Wednesday, 18 February 2009, 09:09 AM +):
> 'Twas brillig, and Wil Sinclair at 18/02/09 03:51 did gyre and gimble:
>> The Zend Framework team has been notified of a potential Local File
>> Inclusion (LFI) attack vector in Zend_View's render() method. To
>> address
'Twas brillig, and Wil Sinclair at 18/02/09 03:51 did gyre and gimble:
The Zend Framework team has been notified of a potential Local File
Inclusion (LFI) attack vector in Zend_View's render() method. To address
the issue, as of the 1.7.5 release the render() method no longer accepts
paths that
