Posted by Rik on 02/23/07 04:39
Steve <no.one@example.com> wrote:
> find a server that parses all documents via php instead of by extension,
> ....
>
> it's not hard to hack any site...it just takes a bit of knowledge and
> some desire.
And in this case, both an insane webserver setting and a either no or a
bogus check on files after upload... Usually it would be much, much harder.
--
Rik Wasmus
[Back to original message]
|