--- Comment #30 from Chris Steipp <> ---
(In reply to comment #29)
> (Attachment 14358 [details] from comment 0 is still private, is that
> intended?)

It is. The attachment contains a working PoC for code execution on unpatched
wikis, and I'd like to give our users some time to patch before making that
part public. Additionally, Checkpoint dind't intend for that to be public, so
it hasn't bean approved by their PR people and the researcher asked me to keep
it private.

Once it seems like most wikis have patches, I'll at least make the exploit
public, so we have a negative example that developers can see and prevent in
the future.

You are receiving this mail because:
You are the assignee for the bug.
You are on the CC list for the bug.
Wikibugs-l mailing list

Reply via email to