view MoinMoin/ @ 5910:7e7e1cbb9d3f

security: fix remote code execution vulnerability in twikidraw/anywikidraw actions We have wikiutil.taintfilename() to make user supplied filenames safe, so that they can't contain any "special" characters like path separators, etc. It is used at many places in moin, but wasn't used here. :|
author Thomas Waldmann <tw AT waldmann-edv DOT de>
date Sat, 29 Dec 2012 15:05:29 +0100
parents 4d1d491c3631
line wrap: on
line source
""" This is just a dummy file to overwrite MoinMoin/ from a
    previous moin installation.

    The file moved to MoinMoin/config/ and you have to fix your
    imports as shown below.

    Alternatively, you can temporarily set show_configuration_error = False,
    so some compatibility code will get activated.
    But this compatibility code will get removed soon, so you really should
    update your config as soon as possible.
show_configuration_error = True

if show_configuration_error:
    from MoinMoin.error import ConfigurationError
    raise ConfigurationError("""\
Please edit your wikiconfig/farmconfig and fix your DefaultConfig import:\r\n
Old:   from MoinMoin.multiconfig import DefaultConfig\r\n
New:   from MoinMoin.config.multiconfig import DefaultConfig\r\n
If you can't do that, but if you can change the MoinMoin code, see the file
MoinMoin/ for an alternative, but temporary workaround.

    from MoinMoin.config.multiconfig import *