GitPHP 0.0.9
- October 24th, 2009
- Posted in Programming
- Write comment
This is just a small bugfix release.
Changes:
- PHP 5.3 fixes (avoid assigning object references, switch to perl compatible regular expressions since the posix extended regex functions are deprecated) – patch by Khee Chin
- On the project list, the project description links to the project page like gitweb – patch by Khee Chin
- Packed ref support – based on work by Khee Chin
- Fixed display of non-english UTF-8 characters (they used to appear garbled)
- Disabled smarty’s template compile check in releases for a small performance boost (smarty used to constantly check if a template was modified, something that’s unnecessary in releases put into production and is only useful during development)
Release is on the GitPHP page, and bugs can be reported on Mantis.
Hello …
I’m not sure of what i’ve seen in your demo (http://www.xiphux.com/gitphp/index.php?p=php/gitphp.git&a=summary), but i think that your webapp can be exploited to lead to a file injection exploitation :
Like http://www.xiphux.com/gitphp/index.php?p=put any path of your server here]&a=summary
to remove the search of path+”/description” just add %00 :
http://www.xiphux.com/gitphp/index.php?p=any path]%00&a=summary
and it will read your files directly
On your server it’s seems that’s your using ModSecurity (return Metho Not Implemented when we put some path to files like passwd but without ModSecurity it can lead to a compromission of the server that host it)
So use regular expression to clean/reject wrong url.
Sorry for reporting the bug here (I don’t wan’t to create an account in mantis ^^)
Thanks for reporting this. I use suhosin / hardened php on my development server so I never caught this. The new release fixes this.