|
Smarty
WARNING: All discussion is moving to https://reddit.com/r/smarty, please go there! This forum will be closing soon. |
|
View previous topic :: View next topic |
Author |
Message |
TNTC4 Smarty n00b
Joined: 13 Apr 2010 Posts: 2
|
Posted: Tue Apr 13, 2010 8:02 am Post subject: security risk with $debugging_ctrl |
|
|
hi.
today i found my sites security exposed because of $debugging_ctrl is set to 'URL' automaticaly in my instalation, and every user in the world can see my template variables when add ?SMARTY_DEBUG in the url.
please set this option to 'NONE' in future releases. |
|
Back to top |
|
|
|
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
Powered by phpBB © 2001, 2005 phpBB Group
|