Wiki source code of Application_MoinMoin

Version 2.1 by Nicolas Gregoire on 2012/01/24 21:10
Hide last authors
Nicolas Gregoire 2.1 1 By default, the 'allow_xslt' configuration option is set to False. if this option is set to True, then "read/write/overwrite arbitrary path/file as the moin process uid/gidarbitrary" is possible. This is triggered by inserting then displaying wiki pages containing XSLT code.
Nicolas Gregoire 1.1 2
Nicolas Gregoire 2.1 3
Nicolas Gregoire 1.1 4 This was documented in version 1.9.3 :
5 http://moinmo.in/SecurityFixes
6 http://hg.moinmo.in/moin/1.9/rev/99e2309a7ec0
7