function in maincore.php turn on
Asked Modified Viewed 2,759 times
123456
123456 10
- Newbie, joined since
- Contributed 4 posts on the community forums.
- Started 1 thread in the forums
- Started this discussions
Hi,
i have question is safe turn on in maincore.php hidden function:
then i turn this my mods of v6 working on v7... By that reason this was turned off can you tell about this thing something?
i have question is safe turn on in maincore.php hidden function:
Code Download source
if (ini_get('register_globals') != 1) {
if ((isset($_POST) == true) && (is_array($_POST) == true)) extract($_POST, EXTR_OVERWRITE);
if ((isset($_GET) == true) && (is_array($_GET) == true)) extract($_GET, EXTR_OVERWRITE);
}then i turn this my mods of v6 working on v7... By that reason this was turned off can you tell about this thing something?
Edited by 123456 on 23-06-2008 10:37,
answered
registering globals is one of the most exploited security issues. if your mods&infusions are coded properly you should not have any problems, otherwise you could open holes for crackers.
Edited by Matonor on 23-06-2008 11:20,
123456
123456 10
- Newbie, joined since
- Contributed 4 posts on the community forums.
- Started 1 thread in the forums
- Started this discussions
thanks, but that is more important then.. sql queries? therefore i will use mysql_escape_string() or something else
answered
this does not really help. If an intruder manipulates an infusion to delete data or output user passwords, he will not care about his quotes being escaped.
Category Forum
System Administration - 8Labels
None yet
Statistics
- Views 0 views
- Posts 3 posts
- Votes 0 votes
- Topic users 2 members
2 participants
Matonor 10
Impossible things are there to be made possible
- Veteran Member, joined since
- Contributed 1,022 posts on the community forums.
- Started 3 threads in the forums
Notifications
Track thread
You are not receiving notifications from this thread.
Related Questions