"full path disclosure" in several files "full path disclosure" in several files
 

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Main Menu

"full path disclosure" in several files

Started by Andi, December 15, 2004, 06:41:06 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages1
User actions

Andi

December 15, 2004, 06:41:06 PM Last Edit: December 16, 2004, 10:50:06 AM by GauGau
Hi :)

maybe it's better to lock the following files for directly access?

------------------------------------
Fatal error: Call to a member function add_action() on a non-object in FULLPATH_to_coppermine/devel/plugins/sample/codebase.php on line 21

------------------------------------
Warning: main(include/exif.php) [function.main]: failed to open stream: No such file or directory in FULLPATH_to_coppermine/include/exif_php.inc.php on line 21
Fatal error: main() [function.require]: Failed opening required 'include/exif.php' in FULLPATH_to_coppermine/include/exif_php.inc.php on line 21

------------------------------------
Warning: main(include/makers/nikon.php) [function.main]: failed to open stream: No such file or directory in FULLPATH_to_coppermine/include/exif.php on line 129
Warning: main() [function.include]: Failed opening 'include/makers/nikon.php' for inclusion in FULLPATH_to_coppermine/include/exif.php on line 129
Warning: main(include/makers/olympus.php) [function.main]: failed to open stream: No such file or directory in FULLPATH_to_coppermine/include/exif.php on line 130
Warning: main() [function.include]: Failed opening 'include/makers/olympus.php' for inclusion in FULLPATH_to_coppermine/include/exif.php on line 130
etc.....

------------------------------------
Fatal error: main() [function.require]: Failed opening required '' in FULLPATH_to_coppermine/bridge/yabbse.inc.php on line 56

------------------------------------
Warning: main(acp/lib/config.inc.php) [function.main]: failed to open stream: No such file or directory in FULLPATH_to_coppermine/bridge/woltlab21.inc.php on line 52
Fatal error: main() [function.require]: Failed opening required 'acp/lib/config.inc.php' in FULLPATH_to_coppermine/bridge/woltlab21.inc.php on line 52

------------------------------------
Warning: main(/smf_api.php) [function.main]: failed to open stream: No such file or directory in FULLPATH_to_coppermine/bridge/smf-api.inc.php on line 92
Fatal error: main() [function.require]: Failed opening required '/smf_api.php' in FULLPATH_to_coppermine/bridge/smf-api.inc.php on line 92

------------------------------------
Warning: main(/SSI.php) [function.main]: failed to open stream: No such file or directory in FULLPATH_to_coppermine/bridge/smf.inc.php on line 101
Fatal error: main() [function.require]: Failed opening required '/SSI.php' in FULLPATH_to_coppermine/bridge/smf.inc.php on line 101

------------------------------------
Warning: main(config.php) [function.main]: failed to open stream: No such file or directory in FULLPATH_to_coppermine/bridge/punbb12.inc.php on line 38
Fatal error: main() [function.require]: Failed opening required 'config.php' in FULLPATH_to_coppermine/bridge/punbb12.inc.php on line 38

------------------------------------
Fatal error: main() [function.require]: Failed opening required '' in FULLPATH_to_coppermine/bridge/punbb.inc.php on line 38
hope, I could help you... :)

Joachim Müller

#1
December 16, 2004, 10:49:53 AM
added
Code Select
if (!defined('IN_COPPERMINE')) die('Not in Coppermine...');to the files in question. Should fix this issue.

Joachim
Print
Go Up Pages1
User actions