[I3geo-OSGEO] Security Issue

[Amanda Osvaldo]

Hi everyone.

I'm inspecting the file /i3geo/ferramentas/uploaddbf/upload.php and if
I understand the script, it allows to upload files without any user
verification. 
Wasn't it a security issue? 

If it, how I can report it? 

Another thing, I cloned i3Geo from github and I think all files have
execution permission, it's dangerous to put on a production server.

-- Amanda Osvaldo
-------------- Próxima Parte ----------
Um anexo em HTML foi limpo...
URL: <http://lists.osgeo.org/pipermail/i3geo/attachments/20170423/85563173/attachment.html>