ok I know if I have a URL like /images/$fileName then someone could be
malicious by using .. to get to the root directory.
What I want to know is, if a URL absolutely starts with /images/ on my
website, is there someway that someone can modify the remainder of the path
such that it actually goes
is_logged_in 5 would return true if user was at least of
level 5 (allowing levels 5,6,7,8,9 access). For pages for punters wjo must
be logged in use is_logged_in().
Regards,
Ben
Seb Frost [EMAIL PROTECTED] on 13/09/2001 11:36:54
To: [EMAIL PROTECTED]
cc:
Subject: [PHP] URL security
[EMAIL PROTECTED], [EMAIL PROTECTED]
cc:
Subject: Re: [PHP] URL security...?
Seb Frost [EMAIL PROTECTED] on 13/09/2001 11:36:54
To: [EMAIL PROTECTED]
cc:
Subject: [PHP] URL security...?
ok I know if I have a URL like /images/$fileName then someone could be
malicious by using .. to get
3 matches
Mail list logo
