Hi! > LFI risk is unique to PHP. The cause of risk is mandatory embedded script.
No it's not. If you write Python code that loads code from random file and evaluates it, it will be "vulnerability in Python". If you write in in Bash, it would be "vulnerability in bash". If you write it in C, it will be "vulnerability in C". I don't see anything unique to PHP here. -- Stanislav Malyshev, Software Architect SugarCRM: http://www.sugarcrm.com/ (408)454-6900 ext. 227 -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
