Welcome to Geeklog, Anonymous Tuesday, May 30 2023 @ 01:35 pm EDT

Geeklog Forums

Forum Index
Popular Topics

security issue ?

New Topic Post Reply

10/08/03 02:14am (Read 2,201 times)

Status: offline

jolla

Forum User

Newbie

Registered: 09/24/03

Posts: 1

I noticed the following in geeklog; ... if ($reply == $LANG01[25]) { ... Is this a smart way to do it ? You're assuming the client/browser is 'honest'...

6 11 Quote

10/09/03 03:55pm

Status: offline

Dirk

Site Admin

Admin

Registered: 01/12/02

Posts: 13073

Location:Stuttgart, Germany

No, that is not a security issue. The first thing any Geeklog file (in public_html) does is to include lib-common.php, which in turn includes the language file, thus overwriting whatever you may have injected from the URL or in a POST request. bye, Dirk

10 28 Quote

New Topic Post Reply

All times are EDT. The time is now 01:35 pm.

Normal Topic
Sticky Topic
Locked Topic

New Post
Sticky Topic W/ New Post
Locked Topic W/ New Post

View Anonymous Posts
Able to post
Filtered HTML Allowed
Censored Content

Geeklog Forums

security issue ?

jolla

Dirk

Search

Resources

About

Getting started

Support

Development

Topics

User Functions

What's New

Articles last 4 weeks

Comments last 4 weeks

Pages last 4 weeks

Links last 4 weeks

Downloads last 4 weeks