-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Kerim Friedman wrote:
Your talking about the PM wiki extension? I was asking
about something
for MediaWiki. There is nothing insecure about bibtex itself...
kerim
On 10/31/05, Christopher E. Granade <cgranade(a)greens.org> wrote:
Kerim Friedman wrote:
>> Does anyone know of any efforts to
integrate bibtex citation data into
>> MediWiki? Something like this plugin for PMWiki?
>>
>> <http://www.pmwiki.org/wiki/Cookbook/BibtexRef>
>>
>> Thanks!
>>
>> kerim
Looking at it, I'd be very concerned about security; the
bibtexquery
action accepts PHP code as a parameter. Takes the hard work out of code
injection/XSS attacks.
--Chris
>
Sorry... I didn't mean that BiBTex is insecure. I was just making an
off-hand comment about the PMWiki extension, as I was floored that the
syntax used by the extension allowed for code injection /as a feature/.
Once again, sorry to clutter inboxes.
- --Chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla -
http://enigmail.mozdev.org
iD8DBQFDZ4Wl0dXuuZr00J4RAl1jAJ9XNu7+y4D10odSjFGncFS0jxDTfQCffZdP
lTl3U14h0IR0+gWTJFLl7Us=
=RGcv
-----END PGP SIGNATURE-----