Search found 4 matches
- Sun Oct 10, 2010 5:52 am
- Forum: PHP - Security
- Topic: PHP file upload question
- Replies: 5
- Views: 2727
Re: PHP file upload question
I apologize for replying so late. I just didn't have time to do much for the last couple of days, sorry again. What I'm trying to accomplish is just figuring out how all this works, I'm not really trying to accomplish anything on a specific project. Thanks for the information you posted, and the inf...
- Wed Oct 06, 2010 5:02 pm
- Forum: PHP - Security
- Topic: PHP file upload question
- Replies: 5
- Views: 2727
Re: PHP file upload question
Also search for other "script-like" things such as the ASP opening tags or "print" and "echo". I once had someone upload and remotely execute a python script that did quite a bit of damage, searching for known and used functions usually puts a stop to it. Thanks, that'...
- Tue Oct 05, 2010 9:03 pm
- Forum: PHP - Security
- Topic: PHP file upload question
- Replies: 5
- Views: 2727
PHP file upload question
Hi, I'm experimenting with different ways to stop PHP shell uploads, and some ways to bypass them. I'm trying it on my localhost. I'm messing around with verification through file extensions. Here's the code: <?php $blacklist = array(".php", ".phtml"); foreach ($blacklist as $ite...
- Tue Sep 28, 2010 9:58 pm
- Forum: PHP - Code
- Topic: Why can functions be executed using variables?
- Replies: 3
- Views: 78
Why can functions be executed using variables?
I'm aware that this works, but I don't quite understand how. I'm kind of new to programming in general so forgive me if this is some basic concept. So for example: <?php $dbc = mysqli_connect('localhost', 'root', '', ''databasename') or die("Can't connect"); $query = "INSERT INTO tabl...