Important txt attachement revealed my absolute folder path

My server runs on CentOS. You know that it is a security consideration to NOT let public know the ABSOLUTE Path of your Joomla folders.

Well, today I noticed that just a simple TXT format attachement will reveal the absolute path on my server.

Someone on my forum uploaded a txt file named "rterror2.txt", but after submission, the filename was converted to :

If you replace those dash characters with slash, you will get the absolute path:

The worse is, you don't have to download this attachement to see its filename then know the path, it is just showing there in the post with full file name which is indicating the absolute path of the website!

Don't you think this is horrible?

I think this is a bug of Kunena 4.0.10.

Hope you will fix it in Kunena 5.

Thank you.

looks like a wrong .htaccess file.

When I add a txt, I can see only the normal url, like www.website.com/media/kunena/attachments/48/test.txt

Maybe because yur are using Kunena 5 but I was using Kunena 4.0.10?

I attached my .htaccess file here, could you please help to check this file and find the possible cause in it?





Thank you.

yes, its your htaccess, I get now errors:

Rendering Error in layout BBCode/Image: Property "url" is not defined in /home/****/domains/***/public_html/components/com_kunena/template/crypsis/layouts/bbcode/image/unauthorised.php on line 15
Layout was rendered in /home/****/domains/****/public_html/components/com_kunena/template/crypsis/layouts/message/item/default.php on line 83

ok that is a new bug what I get on the errors, will check your htaccess again

ok I use now k4, I have no issues, I see the normal path.

Could you please point out which line(s) of code in my .htaccess file is the cause of this issue on my Kunena 4? And how to fix it?

Thank you.

your htaccess seems to be ok now, it was a new bug. So the only thing left is maybe a wrong server setting. Because I have no issues with k4.0 and your htaccess file.

OMG, I don't know how to find out the cause of this issue.

I found "configuraiton report tool" in Kunena, following is my configuration report:

Database collation check: The collation of your table fields are correct

Joomla! SEF: Disabled | Joomla! SEF rewrite: Enabled | FTP layer: Disabled |

This message contains confidential information

htaccess: Exists | PHP environment: Max execution time: 30 seconds | Max execution memory: 128M | Max file upload: 2M

Kunena menu details:

Warning: Spoiler!

ID	Name	Menutype	Link	Path	In trash
154	论坛	kunenamenu	view=home&defaultmenu=155	forum	No
155	类别列表	kunenamenu	view=category&catid=0&layout=list	forum/index	No
156	最新话题	kunenamenu	view=topics&layout=default&mode=replies	forum/latest	No
157	发表新话题	kunenamenu	view=topic&catid=0&layout=create	forum/newtopic	No
158	未回复	kunenamenu	view=topics&layout=default&mode=noreplies	forum/noreplies	No
159	我的话题	kunenamenu	view=topics&layout=user&mode=default	forum/mylatest	No
160	个人资料	kunenamenu	view=user	forum/profile	No
161	论坛用法	kunenamenu	view=misc	forum/forum-usage	No
162	帮助	kunenamenu	view=misc	forum/help	No
163	高级搜索	kunenamenu	view=search	forum/search	No
164	用户列表	kunenamenu	view=user&layout=list	forum/users	No

Joomla default template details : gantry | author: RocketTheme, LLC | version: 4.1.31 | creationdate: April 11, 2016

Kunena default template details : Blue Eagle | author: Kunena Team | version: 4.0.10 | creationdate: 2016-02-18

Kunena version detailed: Kunena 4.0.10 | 2016-02-18 [ Villavicencio ]
| Kunena detailed configuration:

Warning: Spoiler!

Kunena config settings:
board_offline	0
enablerss	0
threads_per_page	20
messages_per_page	20
messages_per_page_search	20
showhistory	1
historylimit	100
shownew	1
disemoticons	0
template	blue_eagle
showannouncement	1
avataroncat	1
catimagepath	category_images/
showchildcaticon	1
rtewidth	450
rteheight	400
enableforumjump	1
reportmsg	1
username	0
askemail	0
showemail	0
showuserstats	1
showkarma	1
useredit	1
useredittime	0
useredittimegrace	600
editmarkup	1
allowsubscriptions	1
subscriptionschecked	1
allowfavorites	1
maxsubject	60
maxsig	300
regonly	0
pubwrite	0
floodprotection	30
mailmod	0
mailadmin	0
captcha	0
mailfull	1
allowavatarupload	1
allowavatargallery	1
avatarquality	65
avatarsize	60
imageheight	1200
imagewidth	1600
imagesize	50
filetypes	txt,rtf,pdf,zip,tar.gz,tgz,tar.bz2,rar,
filesize	100
showranking	1
rankimages	1
userlist_rows	30
userlist_online	1
userlist_avatar	1
userlist_posts	1
userlist_karma	1
userlist_email	0
userlist_joindate	1
userlist_lastvisitdate	1
userlist_userhits	1
latestcategory	0
showstats	1
showwhoisonline	1
showgenstats	1
showpopuserstats	1
popusercount	5
showpopsubjectstats	1
popsubjectcount	5
showspoilertag	1
showvideotag	1
showebaytag	1
trimlongurls	0
trimlongurlsfront	40
trimlongurlsback	20
autoembedyoutube	1
autoembedebay	1
ebaylanguagecode	en-us
sessiontimeout	1800
highlightcode	1
rss_type	topic
rss_timelimit	month
rss_limit	100
rss_included_categories
rss_excluded_categories
rss_specification	rss2.0
rss_allow_html	1
rss_author_format	name
rss_author_in_title	1
rss_word_count	0
rss_old_titles	1
rss_cache	900
defaultpage	recent
default_sort	asc
sef	1
showimgforguest	1
showfileforguest	0
pollnboptions	4
pollallowvoteone	1
pollenabled	1
poppollscount	5
showpoppollstats	1
polltimebtvotes	00:15:00
pollnbvotesbyuser	100
pollresultsuserslist	1
maxpersotext	50
ordering_system	replyid
post_dateformat	datetime
post_dateformat_hover	ago
hide_ip	1
imagetypes	jpg,jpeg,gif,png
checkmimetypes	1
imagemimetypes	image/jpeg,image/jpg,image/gif,image/png
imagequality	70
thumbheight	64
thumbwidth	64
hideuserprofileinfo	put_empty
boxghostmessage	0
userdeletetmessage	0
latestcategory_in	1
topicicons	1
debug	0
catsautosubscribed	0
showbannedreason	0
showthankyou	1
showpopthankyoustats	1
popthankscount	5
mod_see_deleted	0
bbcode_img_secure	text
listcat_show_moderators	1
lightbox	1
show_list_time	720
show_session_type	0
show_session_starttime	0
userlist_allowed	1
userlist_count_users	1
enable_threaded_layouts	0
category_subscriptions	post
topic_subscriptions	every
pubprofile	1
thankyou_max	10
email_recipient_count	0
email_recipient_privacy	bcc
captcha_post_limit	0
keywords	0
userkeywords	0
image_upload	registered
file_upload	registered
topic_layout	flat
time_to_create_page	0
show_imgfiles_manage_profile	1
hold_newusers_posts	0
hold_guest_posts	0
attachment_limit	1
pickup_category	0
article_display	intro
send_emails	1
fallback_english	1
cache	1
cache_time	60
iptracking	1
rss_feedburner_url
autolink	1
access_component	0
statslink_allowed	1
superadmin_userlist	0
legacy_urls	1
attachment_protection	1
categoryicons	1
avatarresizemethod	1
avatarcrop	0
user_report	0
searchtime	365
teaser	1
ebay_language	0
twitter_consumer_key
twitter_consumer_secret
allow_change_subject	1
max_links	6
userlist_name	1
usernamechange	0
version_check	1
userlist_usertype	0
sefutf8	0
enablepdf	1
jmambot	0
annmodid	62
changename	0
userlist_username	1
rules_infb	1
help_infb	1
onlineusers	1

| Kunena integration settings:

Warning: Spoiler!

Kunena - AlphaUserPoints Disabled
Kunena - Community Builder Disabled
Kunena - Gravatar Disabled
Kunena - JomSocial Disabled
Kunena - Joomla Enabled: access=1 login=1
Kunena - Kunena Enabled: avatar=1 profile=1
Kunena - UddeIM Disabled

| Joomla! detailed language files installed:

Warning: Spoiler!

Joomla! languages installed:
zh-CN	简体中文
en-GB	English (en-GB)
zh-TW	正體中文

Third-party components: None

Third-party SEF components: None

Plugins: Search - Kunena Search 3.1.2

Modules: Kunena Latest 3.1.2.1 | Kunena Stats 3.1.2 | Kunena Login 3.1.2 | Kunena Search 3.1.2

Could you please check this and find out the culprit?

Thank you.

I have exactly the same problem. Ver.: 4.0.10
I did not change anything. Just I noticed that when downloading a file's name is inserted all the absolute path to the file. The same name appears in the message. Although the file on the server with the correct name.
What to do?