Endless Paradigm / Computers & Tech / Crazy Computer / Programming / Quick Php help

Post Reply 
Quick Php help
Author Message
ZiNgA BuRgA
Smart Alternative

Posts: 17,022.2988
Threads: 1,174
Joined: 19th Jan 2007
Reputation: -1.71391
E-Pigs: 446.1274
Offline
Post: #12
RE: Quick Php help
Unless keeping the original filename is important, I'd probably rename the file rather than filter it.  Or if you must filter, use a "whitelist" (list of allowed chars) as opposed to a "blacklist" (list of eXx1l3d chars).
Your script is vulnerable to a "null byte" attack (using my suggestions would fix it).
(This post was last modified: 29/05/2009 06:37 AM by ZiNgA BuRgA.)
29/05/2009 06:37 AM
Visit this user's website Find all posts by this user Quote this message in a reply
Post Reply 


Messages In This Thread
Quick Php help - Mickey - 25/04/2009, 11:21 PM
RE: Quick Php help - amzter - 26/04/2009, 02:36 AM
RE: Quick Php help - lembas - 26/04/2009, 02:40 AM
RE: Quick Php help - amzter - 26/04/2009, 03:08 AM
RE: Quick Php help - ZiNgA BuRgA - 26/04/2009, 03:18 AM
RE: Quick Php help - Mickey - 26/04/2009, 10:07 AM
RE: Quick Php help - Mickey - 29/05/2009, 12:36 AM
RE: Quick Php help - ZiNgA BuRgA - 29/05/2009, 01:13 AM
RE: Quick Php help - Mickey - 29/05/2009, 01:27 AM
RE: Quick Php help - Mickey - 29/05/2009, 06:25 AM
RE: Quick Php help - ZiNgA BuRgA - 29/05/2009 06:37 AM
RE: Quick Php help - Mickey - 29/05/2009, 06:39 AM
Thread Revived!!! - Necro-Bot - 29/05/2009, 12:36 AM

Forum Jump:


User(s) browsing this thread: 2 Guest(s)

 Quick Theme:


Privacy Policy | Endless Paradigm | Return to Top | Return to Content | Lite (Archive) Mode | RSS Syndication