7h59 :
A File Upload issue was discovered in Dotclear through 2.11.2.
To exploit this vulnerability, someone must have a media-privilege account. In admin/media.php, the attacker can create a folder named “*.asp” or “*.asa”. In IIS 5.x/6.0, every file in the folder named “*.asp” or “*.asa” will be resolved as “asp”.
8h00 :
An XSS issue was discovered in Dotclear through 2.11.2.
To exploit this vulnerability, someone must have a account that can use an editor to edit content. Dotclear has the dcCKEditor and dcLegacyEditor editors by default. When using them to edit content, the attacker can inject any JavaScript code into the content in source mode,leading to stored XSS.
Je crois que c’est la fin des blogs :-D
Vivement demain !
1 De JcDenis -
\o/ C’est la fête
2 De Franck -
Oui hein ? Du coup j’ai remis le nez dans les CSS et le layout de la page d’édition des billets et des pages.
Z’avaient qu’à pas me chauffer aussi :-)
3 De Sylvain -
Il est pas là le bug !? :D
4 De Franck -
Sylvain j’ai failli, mais ma réputation en aurait pris un coup :-)