Thursday, 17 May 2007
Bugtraq Report for Achievo 1.1 |
| |
|
| |
Ivo Jansch speaks about a security issue in bugtraq. He informs you that this bug is an old version of Achievo. Version 1.2 that was released over a year ago already had a fix for this issue.
He recommends that those running Achievo 1.1 are advised to upgrade to the latest stable version of Achievo, 1.2.1.
This issue can also be fixed in the following ways:
- Make sure that
register_globals is turned off in php.ini. The problem is not present when this setting is turned off. - Edit index.php, and add the line = "./"; right in front of the include of atk.inc
|
| |
|
Read the Post
|
| |
|
|
| |
|
|
| |
|
