php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login

go to bug id or search bugs for

Sec Bug #63167 Possible backup files made by text editors can result in source code displaying
Submitted: 2012-09-26 22:17 UTC Modified: 2012-09-27 22:31 UTC
From: dentonposs at gmail dot com Assigned:
Status: Not a bug Package: Apache2 related
PHP Version: 5.4.7 OS: Linux/Windows/Mac
Private report: No CVE-ID: None
View Add Comment Developer Edit
Welcome! If you don't have a Git account, you can't do anything here.
You can add a comment by following this link or if you reported this bug, you can edit this bug over here.
(description)
Block user comment
Status: Assign to:
Package:
Bug Type:
Summary:
From: dentonposs at gmail dot com
New email:
PHP Version: OS:

 

 [2012-09-26 22:17 UTC] dentonposs at gmail dot com 
Description:
------------
Many text editors like to create backup files before saving, just in case. If 
people are not careful about deleting them, they are not executed by PHP, and the 
user could see source code. It appears the only way to fix this is to add the 
.php~ extension to the list of MIME types in Apache2.conf, so that files with the 
tilde at the end are parsed by PHP.

Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2012-09-27 07:02 UTC] pajoye@php.net
-Status: Open +Status: Not a bug
 [2012-09-27 07:02 UTC] pajoye@php.net 
There is no secyruty issue in PHP but a configuration and deployment problems for 
the users > Not a bug
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved. 		Last updated: Thu Apr 25 19:01:33 2024 UTC