Go to file

Thomas Hochstein e792a8d913 Fix RCE vulnerability on Windows.

Steps to reproduce:

1) Upload a PHP script to the Media Libray,
   naming it "test" (or any other name
   without extension).
2) Rename it to "exploit.php." (trailing dot!)

On Linux, the file will be renamed to
"exploit.php..", which is safe and
cannot be exploited.

On Windows though, the file will be
renemad to "exploit.php" and is then
remotely executable by calling it
from "/uploads/exploit.php".

Thanks to Junyu Zhang <rgdz.eye@gmail.com>
for spotting this!

Signed-off-by: Thomas Hochstein <thh@inter.net>

2020-03-25 15:04:31 +01:00

archives

Added "archives" path to release structure

2014-10-26 20:34:19 +01:00

bundled-libs

Patch HTTP_Request2 to fix PHP 7.4 issue.

2019-08-10 11:42:57 +02:00

deployment

deployment files cleanup

2016-01-26 16:42:27 +01:00

docs

Fix RCE vulnerability on Windows.

2020-03-25 15:04:31 +01:00

htmlarea

Fix: Stop ckeditor from removing figures and figcaptions

2019-10-09 18:10:21 +02:00

include

Fix RCE vulnerability on Windows.

2020-03-25 15:04:31 +01:00

lang

Add different error messages for ML rename.

2020-03-25 13:06:33 +01:00

plugins

"$cachedtype" was set twice.

2020-03-23 20:50:46 +01:00

sql

Fixed SQL statement for creation of serendipity_groupconfig DB table (did not work in my MySQL 5.7.17)

2018-03-28 10:41:18 +02:00

templates

Add plugin source to list of plugins.

2020-03-24 15:57:48 +01:00

templates_c

Also support "last X" REST interface

2006-08-02 10:07:34 +00:00

tests

disable selenium test files

2017-01-02 09:42:37 +01:00

uploads

Also support "last X" REST interface

2006-08-02 10:07:34 +00:00

.gitignore

Adds 'vagrant' to gitignore for local development

2019-09-09 11:19:31 +02:00

checksums.inc.php

Make checksum code skippable

2008-12-09 10:41:48 +00:00

CODE_OF_CONDUCT.md

Add code of conduct to core repository

2019-04-27 18:28:04 +02:00

comment.php

PHP 7: Remove $HTTP_RAW_POST_DATA (#574 )

2018-09-13 14:44:45 +02:00

composer.json

[+]: update composer.json (require min. php 7.0) + update "voku/simple-cache"

2019-03-04 10:30:07 +01:00

composer.phar

port cors

2016-05-19 14:27:16 +02:00

CONTRIBUTING.md

Create CONTRIBUTING.md

2019-04-27 18:36:23 +02:00

exit.php

Security fixes

2018-07-18 11:23:02 +02:00

index.php

Fix: Category feed showed all entries

2016-07-03 23:01:17 +02:00

LICENSE

Create license file for GitHub

2019-04-27 18:31:25 +02:00

README.markdown

Adapt README text to copy on s9y.org

2016-10-27 14:34:40 +02:00

rss.php

PHP 7.2 compat: session_cache, each (#564 , #556 )

2018-09-13 14:22:01 +02:00

serendipity_admin_image_selector.php

cleanup cosmetics

2014-12-10 14:34:54 +01:00

serendipity_admin.php

fixing multilingual issues: display languages in native names and fix initialition point of plugins

2019-11-02 14:20:18 +01:00

serendipity_config.inc.php

Upgrade task to move utf8 mysql databases to utf8mb4 (#394 )

2020-03-22 22:15:23 +01:00

serendipity_xmlrpc.php

cleanup cosmetics

2014-12-10 14:34:54 +01:00

serendipity.css.php

PHP 7.2 compat: session_cache, each (#564 , #556 )

2018-09-13 14:22:01 +02:00

wfwcomment.php

PHP 7: Remove $HTTP_RAW_POST_DATA (#574 )

2018-09-13 14:44:45 +02:00

README.markdown

Serendipity - A reliable, secure & extensible PHP blog

Serendipity is a PHP-powered weblog engine which gives the user an easy way to maintain a blog. While the default package is designed for the casual blogger, Serendipity offers an expandable framework with the power for professional applications.

Languages

PHP 83.2%

Smarty 9.6%

CSS 4.5%

JavaScript 1.8%

HTML 0.7%

Other 0.1%