/ 
Jifty-0.60321
/ Jifty::Logger
Security Advisories (4)
CPANSA-Jifty-2011-01 (2011-03-17)

The path as passed in the fragment request data structure was used verbatim in the dispatcher and other locations. This possibly allowed requests to walk around ACLs by requesting '/some/safe/place/../../../dangerous' as a fragment.

CPANSA-Jifty-2009-01 (2009-04-09)

The REST plugin would let you call any method on the model.

CPANSA-Jifty-2008-01 (2009-04-08)

Allowed all actions on GET.

CPANSA-Jifty-2006-01 (2006-07-06)

Jifty did not protect users against a class of remote data access vulnerability. If an attacker knew the structure of your local filesystem and you were using the "standalone" webserver in production, the attacker could gain read only access to local files.

NAME

Jifty::Logger -- A master class for Jifty's logging framwork

DESCRIPTION

Uses Log4Perl to log messages. By default, logs all messages to the screen.

METHODS

new COMPONENT

This class method instantiates a new Jifty::Logger object. This object deals with logging for the system.

Takes an optional name for this Jifty's logging "component" - See Log4Perl for some detail about what that is. It sets up a "warn" handler which logs warnings to the specified component.

AUTHOR

Various folks at Best Practical Solutions, LLC.