Faille dans Plume 1.1.x/1.0.x

4 views

Skip to first unread message

Titoo

unread,

Jul 10, 2006, 8:54:21 AM7/10/06

to Plume CMS - Security

Hello,

The link plugin in Plume 1.1.x has a security problem.

See:
http://groups.google.com/group/plume-cms-users/browse_thread/thread/3ce1facea137c2ec/d2c2671b0634a8b9h

You can download a patched version here:
http://prdownloads.sourceforge.net/pxsystem/plume-1.1.4.zip?download

The plugin is not part of the official distribution of the 1.0.x
version. You should get the latest plugin by the author or patch it as
given in the previous link.

Best regards,
loïc

Note: Security focus is reporting an exploit here for the 1.0.4
release. http://www.securityfocus.com/bid/18780/info we where not able
to reproduce the error. If you are able to provide more details, we
would be happy to fix as soon as possible the problem.

Reply all

Reply to author

Forward

0 new messages