Re: Insecure XML-RPC handling in Zope reveals the distribution physic al location.

Cancel: the stack trace includes the full path infos. Verified on a 2.5.1 (stable) installation. -- BlueRaven There are only 10 types of people in this world... those who understand binary, and those who don't.

Re: phptonuke allows Remote File Retrieving

PHP feature: by default, it is possible to open any world readable file. You can override this by using openbase_dir setting in php.ini and restricting file operations to a specified subset of paths. -- BlueRaven There are only 10 types of people in this world... those who understand binary