Changes for page Application_Liferay

Last modified by Nicolas Gregoire on 2012/04/19 14:05
From version Icon 21.1 Icon
edited by Nicolas Gregoire
on 2012/01/14 18:49
Change comment: There is no comment for this version
To version Icon 22.1 Icon
edited by Nicolas Gregoire
on 2012/01/14 18:49
Change comment: There is no comment for this version

Summary

Details

Icon Page properties
Content
... ... @@ -22,10 +22,6 @@
22 22  
23 23  * CVE-2011-1502 : allows to read UTF-8 files and to list directories via a XEE (XML External Entity) attack
24 24  
25 -
26 -
27 -
28 28  Reading /etc/passwd using CVE-2011-1502 (cf attached files [[liferay-xee.xsl>>attach:liferay-xee.xsl]] and [[liferay-xee.xml>>attach:liferay-xee.xml]]) :
29 29  
30 -
31 31  [[image:liferay-read-etc-passwd-via-xee.png||style="display: block; margin-left: auto; margin-right: auto"]]