Re: question about safe — PHP Programming Language

You are here: Re: question about safe « PHP Programming Language « IT news, forums, messages

Posted by Rik Wasmus on 09/29/20 12:01

On Sun, 27 Jan 2008 20:30:14 +0100, MZ <marcinzmyslowski@poczta.onet.pl>=
=

wrote:

> Hello!
>
> How to prevent from such try of attack of the website?
>
> http://www.example.com/index.php?id=3D0?;print_r(glob('*'));echo%20%22=

By just not running/eval()ing arbitrary code from outside? You'd really =
=

have to provide the mechanism for the hacker for this to work, it is not=
=

an inherent vulnerability of PHP.
-- =

Rik Wasmus

Navigation:

Next in forum: Re: Do people still use the .inc extension?
Prev in forum: question about safe - question no. 2
Thread view: Re: question about safe

[Reply to this message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация