[pmwiki-users] Vulnerability being exploited

Chris Cox ccox at airmail.net
Wed Jan 3 13:54:25 CST 2007


Wade Hudson wrote:
> Apparently I was wrong about "a vulernability is being exploited on the
> top-level script." Criss, who helped me upgrade to the latest version of
> PmWiki, tells me:
> 
>     The way the mailform works, people *can't* get your email address. 
>     Your email address is in the config file, not anywhere a spammer
>     could get to it.
> 
...
> 
> Should I update my comments.php or my mailform recipe (they're both old)?

I used to use a php mailer... switched to a new cgi mailform.. fixed the
problem for me.




More information about the pmwiki-users mailing list