[pmwiki-users] pmwiki exploit

Robin Sheat robin at kallisti.net.nz
Tue Sep 5 07:38:59 CDT 2006

On Wednesday 06 September 2006 00:17, Nils Knappmeier wrote:
> I verified it, and it really works.
Of course, most people should have register_globals=off in their php.ini file, 
which will prevent this happening at all. If you don't, now is a good time to 
check if you can happily run with it off. Many PHP application exploits 
require it to be 'on' to be effective.

Robin <robin at kallisti.net.nz> JabberID: <eythian at jabber.kallisti.net.nz>

Hostes alienigeni me abduxerunt. Qui annus est?

PGP Key 0xA99CEB6D = 5957 6D23 8B16 EFAB FEF8  7175 14D3 6485 A99C EB6D
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 191 bytes
Desc: not available
Url : /pipermail/pmwiki-users/attachments/20060906/af905582/attachment.bin 

More information about the pmwiki-users mailing list