Details
-
Bug
-
Resolution: Fixed
-
Major
-
1.3 RC1
-
None
Description
It's possible to include remote files using ?skin= in queries
for example : http://skol.xwiki.org/xwiki/bin/view/Main/?skin=../mytest