Re: Frames .. what are the problems? — HTML

You are here: Re: Frames .. what are the problems? « HTML « IT news, forums, messages

Posted by Leif K-Brooks on 11/11/89 11:17

Toby Inkster wrote:
> http://examples.tobyinkster.co.uk/frames/frameset.php

You should probably check that $_GET['page'] is a valid page before
trying to include it. Right now, if you go to
http://examples.tobyinkster.co.uk/frames/frameset.php?page=nonexistant,
it will try to open a file called pages/nonexistant.page and display a
PHP error message when it file can't be found.

I don't think there's much of a security vulnerability (you can't see
the database password by viewing ../../include.php, for instance, since
it appends .page to the filename), but it's always better to be safe
than sorry.

Navigation:

Next in forum: Can I prescribe update for proxy server?
Prev in forum: Re: Frames .. what are the problems?
Thread view: Re: Frames .. what are the problems?

[Reply to this message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация