Support » Plugin: A Page Flip Book » PageflipBook pageflipbook_language parameter local file inclusion

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author AW360

    (@zattara777)

    Hi henrisalo,

    Thanks for your alert. Yes the problem wads solved since last version.

    Hope you enjoy our plugin.

    In the future could you please include changes to changelog (in your http://plugins.svn.wordpress.org/wppageflip/trunk/readme.txt). It would be also nice if you wouldn’t remove old changelogs when you release new version. Also there should be CVE <http://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures&gt; for communicating about this issue. For example I want to tell users to update to at least version, which fixed this security vulnerability. LFI vulnerability could be used for example to read WordPress installation configuration file.

    If this security vulnerability is indeed still missing CVE I could request one if that is OK for you (e.g. you haven’t done so already)? Could you tell me what version of the plugin is patched, thanks?

    I’m just trying to help here 🙂
    Other reference URL: http://osvdb.org/83667

    Plugin Author AW360

    (@zattara777)

    Hi Henrisalo,

    Great to read this, I really appreciated constructive ideas like yours.

    Next release will integrate your comments.

    Best !

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘PageflipBook pageflipbook_language parameter local file inclusion’ is closed to new replies.