rick_k wrote: > > Port 9000 lets you do some things that should only be done by an > authenticated administrator. Two examples are setting passwords and > turning CSRF protection on/off. >
Another example is installing plugins. If you can install plugins, you can run arbitrary code as the user that LMS runs as. ------------------------------------------------------------------------ mavit's Profile: http://forums.slimdevices.com/member.php?userid=10203 View this thread: http://forums.slimdevices.com/showthread.php?t=115292 _______________________________________________ Squeezecenter mailing list [email protected] http://lists.slimdevices.com/mailman/listinfo/squeezecenter
