lambdamoo icon indicating copy to clipboard operation
lambdamoo copied to clipboard

Published 20 hours ago verified publisher icon verement

ctime() can read arbitrary files

Open verement opened this issue 11 years ago • 0 comments

The ctime() built-in function allows a timezone to be passed as a second argument.

Surprisingly, an argument of the form “:path” will read the file described by the given path and attempt to parse it for timezone information. This may potentially be a security risk.

verement avatar Jan 12 '14 00:01 verement