lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <20070114184234.11304.qmail@securityfocus.com> Date: 14 Jan 2007 18:42:34 -0000 From: recklessb@...rs.sourceforge.net To: bugtraq@...urityfocus.com Subject: Re: Re: Re: Uber Uploader 4.2 Arbitrary File Upload Vulnerability Negative. No bug. No Arbitrary File Upload Vulnerability bug in Uber-Uploader 4.2. No need for admin patch as Uber-Uploader 4.2 blocks .phtml uploads out of the box. *.phtml file blocked client side and server side by default. Please review 4.2 code base.