Welcome, Guest! Log in | Create account

Hendrik Van Belleghem – beatnik

Show:

What's happening?

  • Patch for bug #1908274

    Patch for bug #1908274 Apply patch: root@lua:/tmp/# cp apreq2cookie.patch Spine-1.3_Beta root@lua:/tmp/# cd Spine-1.3_Beta root@lua:/tmp/Spine-1.3_Beta# patch -p1 < apreq2cookie.diff patching file lib/Apache2/SPINE/Index.pm.

    12:06AM UTC on Mar 09 2008 in Spine

  • Comment: Apache2::Cookie is not handled transparently

    File Added: apreq2cookie.diff.

    12:01AM UTC on Mar 09 2008 in Spine

  • Apache2::Cookie is not handled transparently

    Apache2::Cookie is not handled transparently. This results in a Internal Server Error. The error log contains the following error message: Can't locate auto/Apache2/Request/cookies.al in @INC (@INC contains: /etc/perl /usr/local/lib/perl/5.8.8 /usr/local/share/perl/5.8.8 /usr/lib/perl5 /usr/share/perl5 /usr/lib/perl/5.8 /usr/share/perl/5.8 /usr/local/lib/site_perl . /etc/apache2) at...

    08:08PM UTC on Mar 05 2008 in Spine

  • Comment: Macro Admin broken in 1.3 beta

    Fixed by patch #1896404.

    08:16PM UTC on Feb 18 2008 in Spine

  • Patch for issue #1896376

    This fixes issue #1896376. Place the attached file in extracted archive folder "Spine-1.3_Beta/lib/SPINE/Handler/Admin". To install, use the following commands (with correct user credentials) "perl Makefile.PL && make install". Restart Apache to apply the changes.

    08:12PM UTC on Feb 18 2008 in Spine

  • Macro Admin broken in 1.3 beta

    The Macro administration panel is broken in a way that it doesn't allow more than one macro to be added to the macroset.

    07:30PM UTC on Feb 18 2008 in Spine

  • Comment: Cross-Site Request Forgery

    See Release 1.22.

    09:35PM UTC on Jan 31 2007 in Spine

  • Comment: Authentication Bypass

    Solution: Apply spine-fix version 1.21, which fixes vulnerability #2. Until an update is available, the vendor recommends users not to visit untrusted web sites while being logged in to the administration section. See http://sourceforge.net/project/showfiles.php?group_id=5799&package_id=217167.

    03:46PM UTC on Jan 11 2007 in Spine

  • Authentication Bypass

    An error exists in the authentication process, which can be exploited to login as the user "admin" with an arbitrary password. The vulnerability is reported in version 1.2. Prior versions may also be affected.

    03:43PM UTC on Jan 11 2007 in Spine

  • Cross-Site Request Forgery

    A vulnerability is caused due to the application allowing administrators to perform certain actions via HTTP requests without performing any validity checks to verify the request. This can e.g. be exploited to add new users by enticing a logged-in administrator to visit a malicious web page. The vulnerability is reported in versions prior to 1.2. Version 1.2 is also affected by this...

    03:42PM UTC on Jan 11 2007 in Spine

About Me

  • 05/17/2000 (9 years ago)
  • 33424
  • beatnik (My Site)
  • Hendrik Van Belleghem

Send me a message

About SourceForge

Find Software

Develop Software

Community

Help

Copyright © 2009 SourceForge, Inc. All rights reserved. Terms of Use