mattd8752 Posted March 25, 2007 Share Posted March 25, 2007 This project is only partly developed, but I would like some suggestions and comments please. Also, if anyone finds any bugs please tell me. Right now you can't use search or upload files. Just look at what is there and tell me if you see any potential security issues. http://www.mattdsworld.com/vid/ Link to comment https://forums.phpfreaks.com/topic/44225-video-music-hosting/ Share on other sites More sharing options...
agentsteal Posted March 25, 2007 Share Posted March 25, 2007 Full Path Disclosure: http://www.mattdsworld.com/wp/wp-admin/admin-footer.php Full Path Disclosure: http://www.mattdsworld.com/wp/wp-admin/admin-functions.php Full Path Disclosure: http://www.mattdsworld.com/wp/wp-admin/edit-form-advanced.php Full Path Disclosure: http://www.mattdsworld.com/wp/wp-admin/edit-form-comment.php Full Path Disclosure: http://www.mattdsworld.com/wp/wp-admin/edit-form.php Full Path Disclosure: http://www.mattdsworld.com/wp/wp-admin/edit-link-form.php Full Path Disclosure: http://www.mattdsworld.com/wp/wp-admin/edit-page-form.php Full Path Disclosure: http://www.mattdsworld.com/wp/wp-admin/menu-header.php Full Path Disclosure: http://www.mattdsworld.com/wp/wp-admin/menu.php Full Path Disclosure: http://www.mattdsworld.com/wp/wp-includes/default-filters.php Full Path Disclosure: http://www.mattdsworld.com/wp/wp-includes/kses.php Full Path Disclosure: http://www.mattdsworld.com/wp/wp-includes/locale.php Full Path Disclosure: http://www.mattdsworld.com/wp/wp-includes/rss-functions.php Full Path Disclosure: http://www.mattdsworld.com/wp/wp-includes/template-loader.php Full Path Disclosure: http://www.mattdsworld.com/wp/wp-includes/vars.php Full Path Disclosure: http://www.mattdsworld.com/wp/wp-includes/wp-db.php Full Path Disclosure: http://www.mattdsworld.com/wp/wp-settings.php User Enumeration: http://www.mattdsworld.com/~root Link to comment https://forums.phpfreaks.com/topic/44225-video-music-hosting/#findComment-215030 Share on other sites More sharing options...
mattd8752 Posted March 25, 2007 Author Share Posted March 25, 2007 Thats the word press. What can I do to protect that? Link to comment https://forums.phpfreaks.com/topic/44225-video-music-hosting/#findComment-215033 Share on other sites More sharing options...
Lumio Posted March 26, 2007 Share Posted March 26, 2007 or error_reporting(0); in the beginning of every file. Link to comment https://forums.phpfreaks.com/topic/44225-video-music-hosting/#findComment-215187 Share on other sites More sharing options...
mattd8752 Posted March 26, 2007 Author Share Posted March 26, 2007 Thanks, any other problems. Or suggestions for the vid site? Link to comment https://forums.phpfreaks.com/topic/44225-video-music-hosting/#findComment-215558 Share on other sites More sharing options...
mattd8752 Posted March 26, 2007 Author Share Posted March 26, 2007 Well, there isn't much I can do for path disclosure. My host is dumb enough to setup permission to say you don't have permission to access "path here"... Link to comment https://forums.phpfreaks.com/topic/44225-video-music-hosting/#findComment-215569 Share on other sites More sharing options...
Recommended Posts