Pixelpost

sapphirecat · #1 09-30-2005, 01:21 PM

I believe I have found a security issue in Pixelpost. While I've checked the current release version (1.4.2), I assume much work has gone into the next version already, and it would be nice to check the up-to-date source before bugging anyone about it. Is there a snapshot, or anonymous CVS somewhere, that I can look at?

Failing that, where exactly should security problems (and potential solutions) be reported? I'd rather not lay out the details on a public forum for anyone to get ahold of before a fixed version can be released.

**Joe[y]**+ · #2 09-30-2005, 04:00 PM

you can email any of the team with security issues if you feel they are not suitable for the forum

geos and raminia are probably more competent security wise so i'd say they should be your first stop!

as far as CVS goes - we do use it but for now there can be no anonymous access... sorry.

thanks.

**raminia**+ · #3 09-30-2005, 04:48 PM

PHP Code:


			
raminia [aT] pixelpost.org

and thank you.

**GeoS**+ · #4 10-01-2005, 05:38 PM

you can send copy also to:

PHP Code:


			
 GeoS (a_t] pixelpost {DOT} org

**Joe[y]**+ · #5 10-01-2005, 05:55 PM

or just

PHP Code:


			
thecrew[a t]pixelpost[ dot ]org

!

**raminia**+ · #6 10-01-2005, 06:23 PM

I didn't get anything.

sapphirecat · #7 10-01-2005, 10:32 PM

Er... oops. I forgot forum mails were going to a different address than the one I've been looking for them at. Mail will be coming shortly.

**GeoS**+ · #8 10-02-2005, 08:41 AM

Now Ive got it.

**blinking8s**+ · #9 10-03-2005, 02:20 AM

Quote:

Originally Posted by Joe[y]

or just

PHP Code:


			
thecrew[a t]pixelpost[ dot ]org

!

yah, that would be the one

nycjournal · #10 10-31-2005, 12:47 AM

Should we be worried about this security issue? Can we get some more details on it?

Pixelpost

Authentic Photoblog Flavour