czaks
commented
10 years ago Actually, it shouldn't be that easily exploitable in Chrome.
Closed czaks closed 10 years ago
czaks
commented
10 years ago Actually, it shouldn't be that easily exploitable in Chrome.
If you are working with Tinyboard, you must apply this patch (basically remove a directory inc/lib/gettext/examples):
https://github.com/vichan-devel/Tinyboard/commit/207543754c4e7a6b1266952d846dc5c254b9a3d3
...or else a malicious party can trick admin into a link that can exploit his or her admin rights.