Hi everyone.
I'm inspecting the file /i3geo/ferramentas/uploaddbf/upload.php and if
I understand the script, it allows to upload files without any user
verification.
Wasn't it a security issue?
If it, how I can report it?
Another thing, I cloned i3Geo from github and I think all files have
execution permission, it's dangerous to put on a production server.
-- Amanda Osvaldo
_______________________________________________
i3geo mailing list
i3geo@lists.osgeo.org
https://lists.osgeo.org/mailman/listinfo/i3geo